stable

rubygem-redcarpet-3.3.2-26.fc37

FEDORA-2023-8682a0e17d created by mtasaka 2 years ago for Fedora 37

A security flow was found on redcarpet that escaping html was not properly done even if requested on some cases which may cause XSS vulnerability. This issue is now assigned as CVE-2020-26298. This new rpm should fix this issue.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2023-8682a0e17d

This update has been submitted for testing by mtasaka.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

This update has been pushed to testing.

2 years ago

This update can be pushed to stable now if the maintainer wishes

2 years ago

This update has been submitted for stable by mtasaka.

2 years ago

This update has been pushed to stable.

2 years ago

Please log in to add feedback.

Metadata
Type
security
Severity
low
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
Builds
1
rubygem-redcarpet-3.3.2-26.fc37
BZ#1915371 CVE-2020-26298 rubygem-redcarpet: does not escape HTML when processing quotes which could result in XSS vulnerability [fedora-all]
0
0
rubygem-redcarpet-3.3.2-26.fc37

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 25.5.1^202511011314gitd15bb4a on bodhi-web-10-887ql.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy