Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:2870-1

Опубликовано: 22 авг. 2022
Источник: suse-cvrf

Описание

Security update for rubygem-rails-html-sanitizer

This update for rubygem-rails-html-sanitizer fixes the following issues:

  • CVE-2022-32209: Fixed a potential content injection under specific configurations (bsc#1201183).

Список пакетов

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP2-SAP-Azure
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP2-SAP-BYOS-Azure
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP2-SAP-BYOS-EC2-HVM
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP2-SAP-BYOS-GCE
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP2-SAP-EC2-HVM
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP2-SAP-GCE
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP3-SAP-BYOS-Azure
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP3-SAP-BYOS-EC2-HVM
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP3-SAP-BYOS-GCE
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-Azure-LI-BYOS
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-BYOS
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-BYOS-Azure
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-BYOS-EC2
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-BYOS-GCE
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-Hardened
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-Hardened-Azure
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-Hardened-BYOS
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-Azure
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-EC2
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-GCE
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-Hardened-EC2
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP4-SAP-Hardened-GCE
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-Azure-3P
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-Azure-LI-BYOS
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-Azure-LI-BYOS-Production
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-BYOS-Azure
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-BYOS-EC2
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-BYOS-GCE
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-Hardened-Azure
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-Hardened-EC2
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP5-SAP-Hardened-GCE
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-Azure-LI-BYOS
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS-Production
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-BYOS
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-BYOS-Azure
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-BYOS-EC2
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-BYOS-GCE
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-Hardened
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-Hardened-Azure
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-Hardened-BYOS
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-Hardened-BYOS-Azure
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-Hardened-BYOS-EC2
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-Hardened-BYOS-GCE
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-Hardened-EC2
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP6-SAP-Hardened-GCE
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
SUSE Linux Enterprise High Availability Extension 15
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
SUSE Linux Enterprise High Availability Extension 15 SP1
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
SUSE Linux Enterprise High Availability Extension 15 SP2
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
SUSE Linux Enterprise High Availability Extension 15 SP3
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
SUSE Linux Enterprise High Availability Extension 15 SP4
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
openSUSE Leap 15.3
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
ruby2.5-rubygem-rails-html-sanitizer-doc-1.0.4-150000.4.3.1
ruby2.5-rubygem-rails-html-sanitizer-testsuite-1.0.4-150000.4.3.1
openSUSE Leap 15.4
ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
ruby2.5-rubygem-rails-html-sanitizer-doc-1.0.4-150000.4.3.1
ruby2.5-rubygem-rails-html-sanitizer-testsuite-1.0.4-150000.4.3.1

Ссылки

Описание

# Possible XSS Vulnerability in Rails::Html::SanitizerThere is a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer.This vulnerability has been assigned the CVE identifier CVE-2022-32209.Versions Affected: ALLNot affected: NONEFixed Versions: v1.4.3## ImpactA possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer may allow an attacker to inject content if the application developer has overridden the sanitizer's allowed tags to allow both `select` and `style` elements.Code is only impacted if allowed tags are being overridden. This may be done via application configuration:```ruby# In config/application.rbconfig.action_view.sanitized_allowed_tags = ["select", "style"]```see https://guides.rubyonrails.org/configuring.html#configuring-action-viewOr it may be done with a `:tags` option to the Action View helper `sanitize`:```<%= sanitize @comment.body, tags: ["select", "style"] %>```see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitizeOr it may be done with Rails::Html::SafeListSanitizer directly:```ruby# class-level optionRails::Html::SafeListSanitizer.allowed_tags = ["select", "style"]```or```ruby# instance-level optionRails::Html::SafeListSanitizer.new.sanitize(@article.body, tags: ["select", "style"])```All users overriding the allowed tags by any of the above mechanisms to include both "select" and "style" should either upgrade or use one of the workarounds immediately.## ReleasesThe FIXED releases are available at the normal locations.## WorkaroundsRemove either `select` or `style` from the overridden allowed tags.## CreditsThis vulnerability was responsibly reported by [windshock](https://hackerone.com/windshock?type=user).

Затронутые продукты
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production:ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production:ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1
Ссылки
Уязвимость SUSE-SU-2022:2870-1