Update RedCloth to 4.3.2 for CVE-2012-6684
What does this MR do?
To fix XSS (CVE-2012-6684), upgrade RedCloth to 4.3.2.
Are there points in the code the reviewer needs to double check?
No.
Why was this MR needed?
Security vulnerability in RedCloth (CVE-2012-6684) should be fixed to provide GitLab as a secure software.
What are the relevant issue numbers?
Closes #19169 (closed)
cf. !2037 (merged), !2071 (merged)
Does this MR meet the acceptance criteria?
- CHANGELOG entry added
- [n/a] Documentation created/updated
- [n/a] API support added
- Tests
- [n/a] Added for this feature/bug
- All builds are passing
- Conform by the style guides
-
Branch has no merge conflicts with
master(if you do - rebase it please) - Squashed related commits together