kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

www/ruby-loofah: update to 2.2.1

Browse source 
## 2.2.1 / 2018-03-19

Addresses CVE-2018-8048. Loofah allowed non-whitelisted attributes to be present in sanitized output when input with specially-crafted HTML fragments.

This CVE's public notice is at https://github.com/flavorjones/loofah/issues/144
This commit is contained in:
taca 2018-03-21 12:09:39 +00:00
parent 461aec6568
commit 732bdb1ee4
3 changed files with 10 additions and 8 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
www/ruby-loofah/Makefile
View file

@ -1,6 +1,6 @@
# $NetBSD: Makefile,v 1.2 2018/03/17 16:21:48 taca Exp $
# $NetBSD: Makefile,v 1.3 2018/03/21 12:09:39 taca Exp $
DISTNAME= loofah-2.2.0
DISTNAME= loofah-2.2.1
CATEGORIES= www
MAINTAINER= minskim@NetBSD.org

4
www/ruby-loofah/PLIST
View file

@ -1,4 +1,4 @@
@comment $NetBSD: PLIST,v 1.2 2018/03/17 16:21:48 taca Exp $
@comment $NetBSD: PLIST,v 1.3 2018/03/21 12:09:39 taca Exp $
${GEM_HOME}/cache/${GEM_NAME}.gem
${GEM_LIBDIR}/.gemtest
${GEM_LIBDIR}/CHANGELOG.md
@ -7,6 +7,7 @@ ${GEM_LIBDIR}/MIT-LICENSE.txt
${GEM_LIBDIR}/Manifest.txt
${GEM_LIBDIR}/README.md
${GEM_LIBDIR}/Rakefile
${GEM_LIBDIR}/SECURITY.md
${GEM_LIBDIR}/benchmark/benchmark.rb
${GEM_LIBDIR}/benchmark/fragment.html
${GEM_LIBDIR}/benchmark/helper.rb
@ -16,6 +17,7 @@ ${GEM_LIBDIR}/lib/loofah/elements.rb
${GEM_LIBDIR}/lib/loofah/helpers.rb
${GEM_LIBDIR}/lib/loofah/html/document.rb
${GEM_LIBDIR}/lib/loofah/html/document_fragment.rb
${GEM_LIBDIR}/lib/loofah/html5/libxml2_workarounds.rb
${GEM_LIBDIR}/lib/loofah/html5/scrub.rb
${GEM_LIBDIR}/lib/loofah/html5/whitelist.rb
${GEM_LIBDIR}/lib/loofah/instance_methods.rb

10
www/ruby-loofah/distinfo
View file

@ -1,6 +1,6 @@
$NetBSD: distinfo,v 1.2 2018/03/17 16:21:48 taca Exp $
$NetBSD: distinfo,v 1.3 2018/03/21 12:09:39 taca Exp $
SHA1 (loofah-2.2.0.gem) = f88958f42507da6fa611b66677e817c78ee6d987
RMD160 (loofah-2.2.0.gem) = 4ae199c042e7cb6c18e8c4c219e0e36dd052cc6f
SHA512 (loofah-2.2.0.gem) = cfee8bb8c138fb76b8fbbf76c3962729711bd1d69bac6eb3fb1b25e0677f9da83b906b4b8f031a92d7780ce43d55bcdec4584dd9a12a9e4d7efc07db0484362e
Size (loofah-2.2.0.gem) = 62464 bytes
SHA1 (loofah-2.2.1.gem) = 124094ccdb70f8ed7dbc899c828e5d902f3155c8
RMD160 (loofah-2.2.1.gem) = cfb7ab71026d8952165ff316383653d8899f79af
SHA512 (loofah-2.2.1.gem) = df971a1bee08f0ee0913af2b4b7baefa6d1ad04af82de796f6f0d505fab7749d52ce79db0118343d336bdae6fcfd4190fecb315019b2c821d81ac1c08d5b8e2a
Size (loofah-2.2.1.gem) = 65024 bytes