[pkgsrc/trunk]: pkgsrc/www/ruby-rails-html-sanitizer www/ruby-rails-html-sani...

To: pkgsrc-changes-hg%NetBSD.org@localhost
Subject: [pkgsrc/trunk]: pkgsrc/www/ruby-rails-html-sanitizer www/ruby-rails-html-sani...
From: taca <taca%pkgsrc.org@localhost>
Date: Sun, 12 Jun 2022 13:24:25 +0000

details:   https://anonhg.NetBSD.org/pkgsrc/rev/698da20334d6
branches:  trunk
changeset: 380675:698da20334d6
user:      taca <taca%pkgsrc.org@localhost>
date:      Sun Jun 12 12:20:11 2022 +0000

description:
www/ruby-rails-html-sanitizer: update to 1.4.3

1.4.3 (2022-06-09)

* Address a possible XSS vulnerability with certain configurations of
  Rails::Html::Sanitizer.

  Prevent the combination of `select` and `style` as allowed tags in
  SafeListSanitizer.

  Fixes CVE-2022-32209

  *Mike Dalessio*

diffstat:

 www/ruby-rails-html-sanitizer/Makefile |  4 ++--
 www/ruby-rails-html-sanitizer/distinfo |  8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diffs (25 lines):

diff -r 0ad6be24b9c0 -r 698da20334d6 www/ruby-rails-html-sanitizer/Makefile
--- a/www/ruby-rails-html-sanitizer/Makefile    Sun Jun 12 08:54:52 2022 +0000
+++ b/www/ruby-rails-html-sanitizer/Makefile    Sun Jun 12 12:20:11 2022 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.4 2021/08/30 15:38:02 taca Exp $
+# $NetBSD: Makefile,v 1.5 2022/06/12 12:20:11 taca Exp $
 
-DISTNAME=      rails-html-sanitizer-1.4.2
+DISTNAME=      rails-html-sanitizer-1.4.3
 CATEGORIES=    www
 
 MAINTAINER=    minskim%NetBSD.org@localhost
diff -r 0ad6be24b9c0 -r 698da20334d6 www/ruby-rails-html-sanitizer/distinfo
--- a/www/ruby-rails-html-sanitizer/distinfo    Sun Jun 12 08:54:52 2022 +0000
+++ b/www/ruby-rails-html-sanitizer/distinfo    Sun Jun 12 12:20:11 2022 +0000
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.6 2021/10/26 11:31:03 nia Exp $
+$NetBSD: distinfo,v 1.7 2022/06/12 12:20:11 taca Exp $
 
-BLAKE2s (rails-html-sanitizer-1.4.2.gem) = 92d5f6e7d93f6f6686931830ff28e64795917a407299db40154cbcee20511364
-SHA512 (rails-html-sanitizer-1.4.2.gem) = 9f0872f1000c758918f66a889322d3393ec678604eb3b01fc21bbb861189ec04fcf05f5c9487bd5eeb63ce6d99a80064718c82bfce2daf25c07754979a2ed747
-Size (rails-html-sanitizer-1.4.2.gem) = 16896 bytes
+BLAKE2s (rails-html-sanitizer-1.4.3.gem) = 110fc5e7b2557d3a8bb7d2424b072e62f7bb9d4dd6d5d6625c4033250a25626a
+SHA512 (rails-html-sanitizer-1.4.3.gem) = ead339d8ed5aefa737298d886a0db3c353254cfa57bdee7d2011f596ed2871dcad3bd16561728da2447e239fcaa908256bb6436493462bca6310a17a3812ffd9
+Size (rails-html-sanitizer-1.4.3.gem) = 17920 bytes

Prev by Date: [pkgsrc/trunk]: pkgsrc/doc Note update of security/opendnssec2 to 2.1.10.
Next by Date: [pkgsrc/trunk]: pkgsrc/doc doc: Updated www/ruby-rails-html-sanitizer to 1.4.3
Previous by Thread: [pkgsrc/trunk]: pkgsrc/doc Note update of security/opendnssec2 to 2.1.10.
Next by Thread: [pkgsrc/trunk]: pkgsrc/doc doc: Updated www/ruby-rails-html-sanitizer to 1.4.3
Indexes:

Home | Main Index | Thread Index | Old Index