Overview

File _patchinfo of Package patchinfo.26194

<patchinfo incident="26194">
  <issue tracker="cve" id="2022-27777"/>
  <issue tracker="cve" id="2020-8167"/>
  <issue tracker="cve" id="2020-15169"/>
  <issue tracker="bnc" id="1176421">VUL-0: CVE-2020-15169: rubygem-actionview-4_2,rubygem-actionview-5_1: rubygem-activeview: Cross-site scripting in translation helpers</issue>
  <issue tracker="bnc" id="1172184">VUL-0: CVE-2020-8167: rubygem-actionview-5_1, rubygem-actionpack-5_1: CSRF Vulnerability in rails-ujs</issue>
  <issue tracker="bnc" id="1199060">VUL-0: CVE-2022-27777: rubygem-actionview-5_1,rubygem-actionview-4_2: Possible cross-site scripting vulnerability in Action View tag helpers</issue>
  <packager>mschnitzer</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for rubygem-actionview-5_1</summary>
  <description>This update for rubygem-actionview-5_1 fixes the following issues:

- CVE-2022-27777: Fixed possible cross-site scripting vulnerability in Action View tag helpers (bsc#1199060).
- CVE-2020-15169: Fixed cross-site scripting in translation helpers (bsc#1176421).
- CVE-2020-8167: Fixed CSRF vulnerability in rails-ujs (bsc#1172184).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places