Navigation:
Browse pkgsrc
(this page)
New packages:Log Message:
Pullup ticket #5874 - requested by taca
www/ruby-loofah: security update
Revisions pulled up:
- www/ruby-loofah/Makefile 1.5
- www/ruby-loofah/PLIST 1.4
- www/ruby-loofah/distinfo 1.5
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Thu Nov 1 16:11:45 UTC 2018
Modified Files:
pkgsrc/www/ruby-loofah: Makefile PLIST distinfo
Log Message:
www/ruby-loofah: update to 2.2.3
## 2.2.3 / 2018-10-30
### Security
Address CVE-2018-16468: Unsanitized JavaScript may occur in sanitized output \
when a crafted SVG element is republished.
This CVE's public notice is at https://github.com/flavorjones/loofah/issues/154
## Meta / 2018-10-27
The mailing list is now on Google Groups \
[#146](https://github.com/flavorjones/loofah/issues/146):
* Mail: loofah-talk@googlegroups.com
* Archive: https://groups.google.com/forum/#!forum/loofah-talk
This change was made because librelist no longer appears to be maintained.
To generate a diff of this commit:
cvs rdiff -u -r1.4 -r1.5 pkgsrc/www/ruby-loofah/Makefile \
pkgsrc/www/ruby-loofah/distinfo
cvs rdiff -u -r1.3 -r1.4 pkgsrc/www/ruby-loofah/PLIST
| Revision | Action | file |
| 1.4.6.1 | modify | pkgsrc/www/ruby-loofah/Makefile |
| 1.3.6.1 | modify | pkgsrc/www/ruby-loofah/PLIST |
| 1.4.6.1 | modify | pkgsrc/www/ruby-loofah/distinfo |