[Git][security-tracker-team/security-tracker][master] ruby-rails-html-sanitizer fixed in sid
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Feb 6 08:34:27 GMT 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
30285ea2 by Moritz Muehlenhoff at 2023-02-06T09:34:03+01:00
ruby-rails-html-sanitizer fixed in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -83115,19 +83115,19 @@ CVE-2022-23521 (Git is distributed revision control system. gitattributes are a
NOTE: https://github.com/git/git/commit/3c50032ff5289cc45659f21949c8d09e52164579
NOTE: https://github.com/git/git/files/10430260/X41-OSTIF-Gitlab-Git-Security-Audit-20230117-public.pdf
CVE-2022-23520 (rails-html-sanitizer is responsible for sanitizing HTML fragments in R ...)
- - ruby-rails-html-sanitizer <unfixed> (bug #1027153)
+ - ruby-rails-html-sanitizer 1.4.4-1 (bug #1027153)
[buster] - ruby-rails-html-sanitizer <no-dsa> (Minor issue)
NOTE: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-rrfc-7g8p-99q8
CVE-2022-23519 (rails-html-sanitizer is responsible for sanitizing HTML fragments in R ...)
- - ruby-rails-html-sanitizer <unfixed> (bug #1027153)
+ - ruby-rails-html-sanitizer 1.4.4-1 (bug #1027153)
[buster] - ruby-rails-html-sanitizer <postponed> (Minor issue can be fixed later)
NOTE: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-9h9g-93gc-623h
CVE-2022-23518 (rails-html-sanitizer is responsible for sanitizing HTML fragments in R ...)
- - ruby-rails-html-sanitizer <unfixed> (bug #1027153)
+ - ruby-rails-html-sanitizer 1.4.4-1 (bug #1027153)
NOTE: https://github.com/rails/rails-html-sanitizer/issues/135
NOTE: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-mcvf-2q2m-x72m
CVE-2022-23517 (rails-html-sanitizer is responsible for sanitizing HTML fragments in R ...)
- - ruby-rails-html-sanitizer <unfixed> (bug #1027153)
+ - ruby-rails-html-sanitizer 1.4.4-1 (bug #1027153)
[buster] - ruby-rails-html-sanitizer <no-dsa> (Minor issue)
NOTE: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-5x79-w82f-gw8w
NOTE: https://github.com/rails/rails-html-sanitizer/commit/56c61c0cebd1e493e8ad7bca2a0191609a4a6979
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/30285ea217facef06892cd4e3ed6ec2b29be2f69
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/30285ea217facef06892cd4e3ed6ec2b29be2f69
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230206/be9ddd1e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list