version bump to v2.2.3 and update CHANGELOG

flavorjones · Oct 30, 2018 · cb3dbfa · cb3dbfa
1 parent 71e4b54
commit cb3dbfa
Show file tree

Hide file tree

Showing 2 changed files with 10 additions and 1 deletion.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,5 +1,14 @@
 # Changelog
 
+## 2.2.3 / 2018-10-30
+
+### Security
+
+Address CVE-2018-16468: Unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.
+
+This CVE's public notice is at https://github.com/flavorjones/loofah/issues/154
+
+
 ## Meta / 2018-10-27
 
 The mailing list is now on Google Groups [#146](https://github.com/flavorjones/loofah/issues/146):

diff --git a/lib/loofah.rb b/lib/loofah.rb
@@ -28,7 +28,7 @@
 #
 module Loofah
   # The version of Loofah you are using
-  VERSION = '2.2.2'
+  VERSION = '2.2.3'
 
   class << self
     # Shortcut for Loofah::HTML::Document.parse