pkgsrc.se | The NetBSD package collection

Subject: CVS commit: pkgsrc/www/ruby-loofah
From: Takahiro Kambe
Date: 2018-03-21 13:09:39
Message id: 20180321120940.0383DFB40@cvs.NetBSD.org

Log Message:
www/ruby-loofah: update to 2.2.1

## 2.2.1 / 2018-03-19

Addresses CVE-2018-8048. Loofah allowed non-whitelisted attributes to be present \ 
in sanitized output when input with specially-crafted HTML fragments.

This CVE's public notice is at https://github.com/flavorjones/loofah/issues/144

Files:

Revision	Action	file
1.3	modify	pkgsrc/www/ruby-loofah/Makefile
1.3	modify	pkgsrc/www/ruby-loofah/PLIST
1.3	modify	pkgsrc/www/ruby-loofah/distinfo