You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@mesos.apache.org by "Jacob Janco (JIRA)" <ji...@apache.org> on 2017/01/20 22:49:26 UTC
[jira] [Updated] (MESOS-6969) Use clipboard.js for copy/paste webui
functionality
[ https://issues.apache.org/jira/browse/MESOS-6969?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jacob Janco updated MESOS-6969:
-------------------------------
Description:
XSS Vulnerabilities exist for zeroclipboard: https://www.cvedetails.com/cve/CVE-2014-1869/
This patch listed below replaces this library with the pure js library clipboard.js: https://clipboardjs.com/ which also removes the webui flash dependency to support clipboard functions.
was:
XSS Vulnerabilities exist for zerclipboard: https://www.cvedetails.com/cve/CVE-2014-1869/
This patch listed below replaces this library with the pure js library clipboard.js: https://clipboardjs.com/ which also removes the webui flash dependency to support clipboard functions.
> Use clipboard.js for copy/paste webui functionality
> ---------------------------------------------------
>
> Key: MESOS-6969
> URL: https://issues.apache.org/jira/browse/MESOS-6969
> Project: Mesos
> Issue Type: Bug
> Components: webui
> Reporter: Jacob Janco
> Assignee: Jacob Janco
> Priority: Minor
> Labels: webui
>
> XSS Vulnerabilities exist for zeroclipboard: https://www.cvedetails.com/cve/CVE-2014-1869/
> This patch listed below replaces this library with the pure js library clipboard.js: https://clipboardjs.com/ which also removes the webui flash dependency to support clipboard functions.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)