Bump Loofah version to 2.3.1 #134

cpariwat · 2019-10-24T10:47:12Z

Vulnerability CVE-2019-15587

In the Loofah gem for Ruby through v2.3.0 unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.

Original issue: flavorjones/loofah#171

Vulnerability CVE-2019-15587 In the Loofah gem for Ruby through v2.3.0 unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.

Bump Loofah version to 2.3.1

d55ab3d

Vulnerability CVE-2019-15587 In the Loofah gem for Ruby through v2.3.0 unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.

cpariwat assigned hiattp Oct 24, 2019

hiattp merged commit b930ca5 into master Oct 24, 2019

hiattp deleted the upgrade-loofah-2.3.1 branch October 24, 2019 11:44

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump Loofah version to 2.3.1 #134

Bump Loofah version to 2.3.1 #134

cpariwat commented Oct 24, 2019

Bump Loofah version to 2.3.1 #134

Bump Loofah version to 2.3.1 #134

Conversation

cpariwat commented Oct 24, 2019