Red Hat Bugzilla – Bug 1302014
CVE-2015-7579 rubygem-rails-html-sanitizer: XSS vulnerability in Action View's strip_tags function
Last modified: 2016-02-28 07:23:51 EST
XSS vulnerability in `Rails::Html::FullSanitizer` used by Action View's `strip_tags` was reported. Due to the way that `Rails::Html::FullSanitizer` is implemented, if an attacker passes an already escaped HTML entity to the input of Action View's `strip_tags` these entities will be unescaped what may cause a XSS attack if used in combination with `raw` or `html_safe`.
Created rubygem-rails-html-sanitizer tracking bugs for this issue:
Affects: fedora-all [bug 1302016]
Red Hat would like to thank Ruby on Rails project for reporting this issue.
Upstream acknowledges Arthur Neves from GitHub and Spyros Livathinos from Zendesk as the original reporters.
rubygem-rails-html-sanitizer-1.0.1-2.fc22 has been pushed to the Fedora 22 stable repository. If problems still persist, please make note of it in this bug report.
rubygem-rails-html-sanitizer-1.0.3-1.fc23 has been pushed to the Fedora 23 stable repository. If problems still persist, please make note of it in this bug report.