From e0cc551fcb1efb3308f1dd8ef53a8764f2a75570 Mon Sep 17 00:00:00 2001
From: Wentao Zhang <wentao.zhang@windriver.com>
Date: Tue, 27 Feb 2024 13:38:44 +0800
Subject: [PATCH] Debian: jqueryui : fix CVE-2022-31160

Upgrade libjs-jquery-ui to 1.12.1+dfsg-8+deb11u2

Refer to:
https://nvd.nist.gov/vuln/detail/CVE-2022-31160

Test Plan:
Pass: downloader
Pass: build-pkgs --clean --all
Pass: build-image
Pass: boot

Closes-bug: #2052923

Change-Id: I588f6c917d8123fc15444ccca1337e5d316fc9df
Signed-off-by: Wentao Zhang <wentao.zhang@windriver.com>
---
 debian-mirror-tools/config/debian/common/base-bullseye.lst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/debian-mirror-tools/config/debian/common/base-bullseye.lst b/debian-mirror-tools/config/debian/common/base-bullseye.lst
index 93c80491..8d29c9ee 100644
--- a/debian-mirror-tools/config/debian/common/base-bullseye.lst
+++ b/debian-mirror-tools/config/debian/common/base-bullseye.lst
@@ -443,7 +443,7 @@ libjs-jquery-cookie  12-3
 libjs-jquery-metadata  12-3
 libjs-jquery.quicksearch  2.0.4-1.1
 libjs-jquery-tablesorter  1:2.31.3+dfsg1-1
-libjs-jquery-ui  1.12.1+dfsg-8+deb11u1
+libjs-jquery-ui  1.12.1+dfsg-8+deb11u2  https://snapshot.debian.org/archive/debian/20231113T085432Z/pool/main/j/jqueryui/libjs-jquery-ui_1.12.1%2Bdfsg-8%2Bdeb11u2_all.deb
 libjs-jsencrypt  2.3.0+dfsg2-2
 libjs-lrdragndrop  1.0.2-2.1
 libjs-magic-search  0.2.5-1.1