| Release | Version |
|---|---|
| buster | 4.6.6-2.1~deb10u1 |
| buster (security) | 4.6.6-2.1~deb10u2 |
| bullseye | 5.2.1-2 |
| bullseye (security) | 5.2.1-2+deb11u1 |
| bookworm | 6.0.0-1.1 |
| bookworm (security) | 6.0.0-1.1+deb12u1 |
| trixie | 6.0.2-2 |
| sid | 6.0.2-2 |
| Bug | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2023-23627 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | Sanitize is an allowlist-based HTML and CSS sanitizer. Versions 5.0.0 ... |
| Bug | Description |
|---|---|
| CVE-2023-36823 | Sanitize is an allowlist-based HTML and CSS sanitizer. Using carefully ... |
| CVE-2020-4054 | In Sanitize (RubyGem sanitize) greater than or equal to 3.0.0 and less ... |
| CVE-2018-3740 | A specially crafted HTML fragment can cause Sanitize gem for Ruby to a ... |
| DSA / DLA | Description |
|---|---|
| DSA-5616-1 | ruby-sanitize - security update |
| DLA-3652-1 | ruby-sanitize - security update |
| DSA-4730-1 | ruby-sanitize - security update |
| DSA-4358-1 | ruby-sanitize - security update |