SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for ruby2.5-rubygem-loofah-2.2.2-150000.4.6.1.x86_64.rpm :

* Tue Oct 25 2022 mschnitzerAATTsuse.com- Added patch CVE-2019-15587.patch to fix CVE-2019-15587 (bsc#1154751)
* Tue Nov 06 2018 mschnitzerAATTsuse.com- Security Vulnerability Fix: Unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.
* Added CVE-2018-16468.patch to address this security issue (bsc#1113969, CVE-2018-16468)- Added series file for a better patch handling with quilt
* Fri Mar 23 2018 dkangAATTsuse.com- update to version 2.2.2
* Make public Loofah::HTML5::Scrub.force_correct_attribute_escaping!, which was previously a private method. This is so that downstream gems (like rails-html-sanitizer) can use this logic directly for their own attribute scrubbers should they need to address CVE-2018-8048. fix bsc#1086598
* Tue Mar 20 2018 dkangAATTsuse.com- Update to version 2.2.1 Fix XSS Vulnerability [CVE-2018-8048] fix bsc#1085967
* Thu Feb 15 2018 mrueckertAATTsuse.de- also set a description again
* Mon Feb 12 2018 bgeukenAATTsuse.com- Update to version 2.2.0 Features:
* Support HTML5
tag. #133 (Thanks, AATTMothOnMars!)
* Recognize HTML5 block elements. #136 (Thanks, AATTMothOnMars!)
* Support SVG tag. #131 (Thanks, AATTbaopham!)
* Support for whitelisting CSS functions, initially just calc and rgb. #122/#123/#129 (Thanks, AATTNikoRoberts!)
* Whitelist CSS property list-style-type. #68/#137/#142 (Thanks, AATTandela-ysanni and AATTNikoRoberts!) Bugfixes:
* Properly handle nested script tags. #127.
* Fri Oct 13 2017 mschnitzerAATTsuse.com- updated to version 2.1.1 2.1.1 / 2017-09-24 Bugfixes:
* Removed warning for unused variable. #124 (Thanks, AATTy-yagi!)
* Tue Aug 18 2015 cooloAATTsuse.com- updated to version 2.0.3 see installed CHANGELOG.rdoc == 2.0.3 / 2015-08-17 Bug fixes:
* Revert support for negative values in CSS properties due to slow performance. #90 (Related to #85.)
* Wed May 06 2015 cooloAATTsuse.com- updated to version 2.0.2 see installed CHANGELOG.rdoc == 2.0.2 / 2015-05-05 Bug fixes:
* Fix error with `#to_text` when Loofah::Helpers hadn\'t been required. #75
* Allow multi-word data attributes. #84 (Thanks, AATTjstorimer!)
* Allow negative values in CSS properties. #85 (Thanks, AATTsiddhartham!)
* Wed Nov 12 2014 cooloAATTsuse.com- updated to version 2.0.1 Bug fixes:
* Load RR correctly when running test files directly. (Thanks, AATTktdreyer!) Notes:
* Extracted HTML5::Scrub#scrub_css_attribute to accommodate the Rails integration work. (Thanks, AATTkaspth!)
* Mon Oct 13 2014 cooloAATTsuse.com- adapt to new rubygem packaging
  
ICM