Candidate: CVE-2018-3741
PublicDate: 2018-03-30 19:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3741
 http://www.openwall.com/lists/oss-security/2018/03/22
Description:
 There is a possible XSS vulnerability in all rails-html-sanitizer gem
 versions below 1.0.4 for Ruby. The gem allows non-whitelisted attributes to
 be present in sanitized output when input with specially-crafted HTML
 fragments, and these attributes can lead to an XSS attack on target
 applications. This issue is similar to CVE-2018-8048 in Loofah. All users
 running an affected release should either upgrade or use one of the
 workarounds immediately.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by: Kaarlo Haikonen
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N [6.1 MEDIUM]


Patches_ruby-rails-html-sanitizer:
upstream_ruby-rails-html-sanitizer: released (1.0.4)
precise/esm_ruby-rails-html-sanitizer: DNE
trusty_ruby-rails-html-sanitizer: DNE
trusty/esm_ruby-rails-html-sanitizer: DNE
xenial_ruby-rails-html-sanitizer: ignored (end of standard support, was needed)
artful_ruby-rails-html-sanitizer: ignored (reached end-of-life)
bionic_ruby-rails-html-sanitizer: not-affected (1.0.4-1)
cosmic_ruby-rails-html-sanitizer: ignored (reached end-of-life)
disco_ruby-rails-html-sanitizer: not-affected (1.0.4-1)
eoan_ruby-rails-html-sanitizer: not-affected (1.0.4-1)
focal_ruby-rails-html-sanitizer: not-affected (1.0.4-1)
groovy_ruby-rails-html-sanitizer: not-affected (1.0.4-1)
hirsute_ruby-rails-html-sanitizer: not-affected (1.0.4-1)
impish_ruby-rails-html-sanitizer: not-affected (1.0.4-1)
jammy_ruby-rails-html-sanitizer: not-affected (1.0.4-1)
devel_ruby-rails-html-sanitizer: not-affected (1.0.4-1)