Skip to content
GitLab
Explore
Sign in
Register
Commits on Source (2)
Reference fix for CVE-2018-16468/ruby-loofah
· 646c46ca
Salvatore Bonaccorso
authored
Dec 30, 2018
646c46ca
CVE-2018-16468/ruby-loofah fixed in unstable via new upstream version
· 589c5043
Salvatore Bonaccorso
authored
Dec 30, 2018
589c5043
Show whitespace changes
Inline
Side-by-side
data/CVE/list
View file @
589c5043
...
...
@@ -17336,8 +17336,9 @@ CVE-2018-16470 (There is a possible DoS vulnerability in the multipart parser in
CVE-2018-16469 (The merge.recursive function in the merge package v <1.2 can be ...)
NOT-FOR-US: merge package v
CVE-2018-16468 (In the Loofah gem for Ruby, through v2.2.2, unsanitized JavaScript may ...)
- ruby-loofah
<unfixed>
(bug #912398)
- ruby-loofah
2.2.3-1
(bug #912398)
NOTE: https://github.com/flavorjones/loofah/issues/154
NOTE: https://github.com/flavorjones/loofah/commit/71e4b5434fbcb2ad87643f0c9fecfc3a847943c4 (v2.2.3)
CVE-2018-16467 (A missing check in Nextcloud Server prior to 14.0.0 could give ...)
- nextcloud <itp> (bug #835086)
CVE-2018-16466 (Improper revalidation of permissions in Nextcloud Server prior to ...)
Salvatore Bonaccorso authored
Salvatore Bonaccorso authored