Subject: CVS commit: pkgsrc/www/ruby-rails-html-sanitizer
From: Takahiro Kambe
Date: 2022-06-12 14:20:11
Message id: 20220612122011.5B2C4FB1A@cvs.NetBSD.org

Log Message:
www/ruby-rails-html-sanitizer: update to 1.4.3

1.4.3 (2022-06-09)

* Address a possible XSS vulnerability with certain configurations of
  Rails::Html::Sanitizer.

  Prevent the combination of `select` and `style` as allowed tags in
  SafeListSanitizer.

  Fixes CVE-2022-32209

  *Mike Dalessio*

Files:
RevisionActionfile
1.5modifypkgsrc/www/ruby-rails-html-sanitizer/Makefile
1.7modifypkgsrc/www/ruby-rails-html-sanitizer/distinfo