Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

ruby2.5-rubygem-loofah-2.2.2-lp152.5.2 RPM for aarch64

From OpenSuSE Ports Leap 15.2 for aarch64

Name: ruby2.5-rubygem-loofah Distribution: openSUSE Leap 15.2
Version: 2.2.2 Vendor: openSUSE
Release: lp152.5.2 Build date: Thu Nov 7 22:59:20 2019
Group: Development/Languages/Ruby Build host: obs-arm-1
Size: 245540 Source RPM: rubygem-loofah-2.2.2-lp152.5.2.src.rpm
Summary: HTML/XML manipulation and sanitization based on Nokogiri
Loofah is a general library for manipulating and transforming HTML/XML documents and fragments.
It's built on top of Nokogiri and libxml2, so it's fast and has a nice API.

Loofah excels at HTML sanitization (XSS prevention). It includes some nice HTML sanitizers,
which are based on HTML5lib's whitelist, so it most likely won't make your codes less secure.






* Tue Nov 06 2018
  - Security Vulnerability Fix: Unsanitized JavaScript may occur in
    sanitized output when a crafted SVG element is republished.
    * Added CVE-2018-16468.patch to address this security issue
    (bsc#1113969, CVE-2018-16468)
  - Added series file for a better patch handling with quilt
* Fri Mar 23 2018
  - update to version 2.2.2
    * Make public Loofah::HTML5::Scrub.force_correct_attribute_escaping!, which was previously a private method.
      This is so that downstream gems (like rails-html-sanitizer) can use this logic directly for their own attribute scrubbers should they need to address CVE-2018-8048.
    fix bsc#1086598
* Tue Mar 20 2018
  - Update to version 2.2.1
    Fix XSS Vulnerability [CVE-2018-8048]
    fix bsc#1085967
* Thu Feb 15 2018
  - also set a description again
* Mon Feb 12 2018
  - Update to version 2.2.0
    * Support HTML5 <main> tag. #133 (Thanks, @MothOnMars!)
    * Recognize HTML5 block elements. #136 (Thanks, @MothOnMars!)
    * Support SVG <symbol> tag. #131 (Thanks, @baopham!)
    * Support for whitelisting CSS functions, initially just calc and rgb. #122/#123/#129 (Thanks, @NikoRoberts!)
    * Whitelist CSS property list-style-type. #68/#137/#142 (Thanks, @andela-ysanni and @NikoRoberts!)
    * Properly handle nested script tags. #127.
* Fri Oct 13 2017
  - updated to version 2.1.1
    2.1.1 / 2017-09-24
    * Removed warning for unused variable. #124 (Thanks, @y-yagi!)
* Tue Aug 18 2015
  - updated to version 2.0.3
    see installed CHANGELOG.rdoc
    == 2.0.3 / 2015-08-17
    Bug fixes:
    * Revert support for negative values in CSS properties due to slow performance. #90 (Related to #85.)
* Wed May 06 2015
  - updated to version 2.0.2
    see installed CHANGELOG.rdoc
    == 2.0.2 / 2015-05-05
    Bug fixes:
    * Fix error with `#to_text` when Loofah::Helpers hadn't been required. #75
    * Allow multi-word data attributes. #84 (Thanks, @jstorimer!)
    * Allow negative values in CSS properties. #85 (Thanks, @siddhartham!)
* Wed Nov 12 2014
  - updated to version 2.0.1
    Bug fixes:
    * Load RR correctly when running test files directly. (Thanks, @ktdreyer!)
    * Extracted HTML5::Scrub#scrub_css_attribute to accommodate the Rails integration work. (Thanks, @kaspth!)
* Mon Oct 13 2014
  - adapt to new rubygem packaging



Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Aug 9 13:11:12 2022