Release | Version |
---|---|
jessie | 2.1.0-1 |
stretch | 2.1.0-2+deb9u1 |
buster | 4.6.6-2.1~deb10u1 |
buster (security) | 4.6.6-2.1~deb10u2 |
bullseye | 5.2.1-2 |
bullseye (security) | 5.2.1-2+deb11u1 |
bookworm | 6.0.0-1.1 |
bookworm (security) | 6.0.0-1.1+deb12u1 |
trixie | 6.0.2-2 |
sid | 6.0.2-2 |
Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
---|---|---|---|---|---|---|---|---|
CVE-2023-36823 | vulnerable | vulnerable | fixed | fixed | fixed | fixed | fixed | Sanitize is an allowlist-based HTML and CSS sanitizer. Using carefully ... |
CVE-2023-23627 | vulnerable | vulnerable | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | Sanitize is an allowlist-based HTML and CSS sanitizer. Versions 5.0.0 ... |
CVE-2018-3740 | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | fixed | A specially crafted HTML fragment can cause Sanitize gem for Ruby to a ... |
Bug | Description |
---|---|
CVE-2020-4054 | In Sanitize (RubyGem sanitize) greater than or equal to 3.0.0 and less ... |
DSA / DLA | Description |
---|---|
DSA-5616-1 | ruby-sanitize - security update |
DLA-3652-1 | ruby-sanitize - security update |
DSA-4730-1 | ruby-sanitize - security update |
DSA-4358-1 | ruby-sanitize - security update |