XLTS for AngularJS v1.9.3 Released
Aug 18, 2023
Sep 9, 2024
sublinear-dismantling
Bug Fixes
- $compile: fix a vulnerable performance issue in
ng-srcset
parsing- This fixes a High Severity ReDoS vulnerability (CVE-2024-21490).
- route: suppress warning from CodeQL regarding escaping backslash characters
FAQ
Updated: March 5, 2024
The first high-severity CVE since AngularJS End of Life has been officially reported. For AngularJS Never-Ending Support (formerly XLTS) clients, we found this CVE last year and issued a fix immediately. For all others, as Google’s official AngularJS long-term support partner, we encourage you to either:
- Migrate off of AngularJS, or
- Contact HeroDevs about how you can keep your AngularJS environment secure, compliant, and compatible indefinitely.
Aug 18, 2023
Sep 9, 2024