CVE-2018-1999024 log
| Source |
|
| Severity | Medium |
| Remote | No |
| Type | Cross-site scripting |
| Description | A security issue has been found in MathJax versions prior to version 2.7.4, which contain a Cross Site Scripting (XSS) vulnerability in the \unicode{} macro that can result in potentially untrusted Javascript running within a web browser, for example at notebook load. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-822 | mathjax | 2.7.3-1 | 2.7.4-1 | Medium | Fixed |
| References |
|---|
https://blog.jupyter.org/security-fix-for-jupyter-notebook-450f272b6932 |