| Release | Version |
|---|---|
| bullseye | 1.3.0-1 |
| bookworm | 1.4.4-1 |
| trixie | 1.4.4-1 |
| sid | 1.4.4-1 |
| Bug | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|
| CVE-2022-32209 | vulnerable | fixed | fixed | fixed | # Possible XSS Vulnerability in Rails::Html::SanitizerThere is a possi ... |
| CVE-2022-23520 | vulnerable | fixed | fixed | fixed | rails-html-sanitizer is responsible for sanitizing HTML fragments in R ... |
| CVE-2022-23519 | vulnerable | fixed | fixed | fixed | rails-html-sanitizer is responsible for sanitizing HTML fragments in R ... |
| CVE-2022-23518 | vulnerable | fixed | fixed | fixed | rails-html-sanitizer is responsible for sanitizing HTML fragments in R ... |
| CVE-2022-23517 | vulnerable | fixed | fixed | fixed | rails-html-sanitizer is responsible for sanitizing HTML fragments in R ... |
| Bug | Description |
|---|---|
| CVE-2018-3741 | There is a possible XSS vulnerability in all rails-html-sanitizer gem ... |
| CVE-2015-7580 | Cross-site scripting (XSS) vulnerability in lib/rails/html/scrubbers.r ... |
| CVE-2015-7579 | Cross-site scripting (XSS) vulnerability in the rails-html-sanitizer g ... |
| CVE-2015-7578 | Cross-site scripting (XSS) vulnerability in the rails-html-sanitizer g ... |
| DSA / DLA | Description |
|---|---|
| DLA-3566-1 | ruby-rails-html-sanitizer - security update |
| DLA-3227-1 | ruby-rails-html-sanitizer - security update |