| Release | Version |
|---|---|
| buster | 4.6.6-2.1~deb10u1 |
| bullseye | 5.2.1-2 |
| bookworm | 6.0.0-1.1 |
| trixie | 6.0.0-1.1 |
| sid | 6.0.0-1.1 |
| Bug | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2023-36823 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | Sanitize is an allowlist-based HTML and CSS sanitizer. Using carefully ... |
| CVE-2023-23627 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | Sanitize is an allowlist-based HTML and CSS sanitizer. Versions 5.0.0 ... |
| Bug | Description |
|---|---|
| CVE-2020-4054 | In Sanitize (RubyGem sanitize) greater than or equal to 3.0.0 and less ... |
| CVE-2018-3740 | A specially crafted HTML fragment can cause Sanitize gem for Ruby to a ... |
| DSA / DLA | Description |
|---|---|
| DSA-4730-1 | ruby-sanitize - security update |
| DSA-4358-1 | ruby-sanitize - security update |