So I am using following release on Ubuntu 22.04lts
Version: 1.13.1+dfsg-1 (Priority: optional Section: universe/web)
I am curious why the 1.13.2 is not available yet especially when upstream has released 1.13.2 fixing the CVE-2022-31160 in it - https://github.com/jquery/jquery-ui/...h6gj-6jjq-h8g9
If the upstream has fixed this already then shouldn't the LTS release also have that new package (with the fix) available to LTS users? Or one still needs Pro for this?
At the same time Ubuntu 20.04 does not need PRO to fix CVE-2022-31160 for this package (different release version), the fixed version is available without needing PRO - https://ubuntu.com/security/cves?q=&package=jqueryui
Any comments are appreciated. Thank you.