http://bugzilla.opensuse.org/show_bug.cgi?id=996014 http://bugzilla.opensuse.org/show_bug.cgi?id=996014#c5 Andreas Stieger <astieger@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|IN_PROGRESS |RESOLVED Resolution|--- |WORKSFORME --- Comment #5 from Andreas Stieger <astieger@suse.com> --- CVE-2016-7103 is fixed in jquery-ui 1.12.0. https://nodesecurity.io/advisories/127 jquery-ui-rails 6.0.1 bundles 1.12.1 (since 6.0.0) https://github.com/jquery-ui-rails/jquery-ui-rails/blob/master/History.md Leap has 6.0.1 -- You are receiving this mail because: You are on the CC list for the bug.