logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2018-16468

Description

In the Loofah gem for Ruby, through v2.2.2, unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.


Affected Package


OS OS Version Package Name Package Version
ubuntu upstream ruby-loofah 2.0.3-2+deb9u2, 2.2.3-1
ubuntu 16.04 ruby-loofah 2.0.3-2+deb9u2build0.16.04.1

Related