Dojo/Lucid Security Advisory

A short while ago, a patch for a security hole was released for Dojo, the javascript library we use in Lucid. We just released version 1.0.1, which fixes this security hole, and upgrades the version of Dojo to 1.3.3, which is the latest version. We strongly advise you upgrade ASAP, as this is a fairly serious security problem. This only affects the javascript code, so you don't need to reinstall, just copy the /desktop/dojotoolkit/ folder in 1.0.1 to your server to upgrade. Sorry for the inconvenience.

You can find out more details about the security issue here: http://dojotoolkit.org/blog/post/dylan/2010/03/dojo-security-advisory/

Posted by Will Riley on March 11, 2010