[DRE-maint] Bug#1026083: Security: XSS bug in Loofah
Hans-Christoph Steiner
hans at eds.org
Wed Dec 14 12:21:55 GMT 2022
Package: ruby-loofah
Version: 2.19.0-1
Severity: serious
control: affects -1 ruby-loofah/2.1.0
control: affects -1 ruby-loofah/2.7.0+dfsg-1
control: tags -1 fixed-upstream security help
An XSS issue has been discovered in Loofah:
https://github.com/flavorjones/loofah/security/advisories/GHSA-228g-948r-83gx
It is fixed in the upstream release v2.19.1.
More information about the Pkg-ruby-extras-maintainers
mailing list