SUSE-SU-2023:3534-1

This update for rubygem-rails-html-sanitizer fixes the following issues:

CVE-2022-23517: Fixed inefficient regular expression that is susceptible to excessive backtracking (bsc#1206433).
CVE-2022-23518: Fixed XSS via data URIs when used in combination with Loofah (bsc#1206434).
CVE-2022-23519: Fixed XSS vulnerability with certain configurations of Rails::Html::Sanitizer (bsc#1206435).
CVE-2022-23520: Fixed XSS vulnerability with certain configurations of Rails::Html::Sanitizer (bsc#1206436).

SUSE:OpenStack Cloud Crowbar 8ruby2.1-rubygem-rails-html-sanitizer

Fixed in:

1.0.3-8.14.1

SUSE:OpenStack Cloud Crowbar 8rubygem-rails-html-sanitizer

Fixed in:

1.0.3-8.14.1

SUSE:OpenStack Cloud Crowbar 9ruby2.1-rubygem-rails-html-sanitizer

Fixed in:

1.0.3-8.14.1

SUSE:OpenStack Cloud Crowbar 9rubygem-rails-html-sanitizer

Fixed in:

1.0.3-8.14.1