| Release | Version |
|---|---|
| buster | 4.6.6-2.1~deb10u1 |
| buster (security) | 4.6.6-2.1~deb10u2 |
| bullseye | 5.2.1-2 |
| bookworm | 6.0.0-1.1 |
| sid | 6.0.0-1.1 |
| Bug | buster | bullseye | bookworm | sid | Description |
|---|---|---|---|---|---|
| CVE-2023-36823 | fixed | vulnerable | vulnerable | vulnerable | Sanitize is an allowlist-based HTML and CSS sanitizer. Using carefully ... |
| CVE-2023-23627 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Sanitize is an allowlist-based HTML and CSS sanitizer. Versions 5.0.0 ... |
| Bug | Description |
|---|---|
| CVE-2020-4054 | In Sanitize (RubyGem sanitize) greater than or equal to 3.0.0 and less ... |
| CVE-2018-3740 | A specially crafted HTML fragment can cause Sanitize gem for Ruby to a ... |
| DSA / DLA | Description |
|---|---|
| DLA-3652-1 | ruby-sanitize - security update |
| DSA-4730-1 | ruby-sanitize - security update |
| DSA-4358-1 | ruby-sanitize - security update |