VYPR

rpm package

suse/rubygem-loofah&distro=SUSE Linux Enterprise High Availability Extension 15

pkg:rpm/suse/rubygem-loofah&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015

Vulnerabilities (2)

  • CVE-2019-15587Oct 22, 2019
    affected < 2.2.2-150000.4.6.1fixed 2.2.2-150000.4.6.1

    In the Loofah gem for Ruby through v2.3.0 unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.

  • CVE-2018-16468Oct 30, 2018
    affected < 2.2.2-4.3.1fixed 2.2.2-4.3.1

    In the Loofah gem for Ruby, through v2.2.2, unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.