Juho Nurminen discovered that the REXML gem bundled with Ruby incorrectly
parsed and serialized XML documents. A remote attacker could possibly use
this issue to perform an XML round-trip attack.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 20.10 | noarch | libruby2.7 | < 2.7.1-3ubuntu1.3 | UNKNOWN |
Ubuntu | 20.10 | noarch | libruby2.7-dbgsym | < 2.7.1-3ubuntu1.3 | UNKNOWN |
Ubuntu | 20.10 | noarch | ruby2.7 | < 2.7.1-3ubuntu1.3 | UNKNOWN |
Ubuntu | 20.10 | noarch | ruby2.7-dbgsym | < 2.7.1-3ubuntu1.3 | UNKNOWN |
Ubuntu | 20.10 | noarch | ruby2.7-dev | < 2.7.1-3ubuntu1.3 | UNKNOWN |
Ubuntu | 20.10 | noarch | ruby2.7-doc | < 2.7.1-3ubuntu1.3 | UNKNOWN |
Ubuntu | 20.04 | noarch | libruby2.7 | < 2.7.0-5ubuntu1.4 | UNKNOWN |
Ubuntu | 20.04 | noarch | libruby2.7-dbgsym | < 2.7.0-5ubuntu1.4 | UNKNOWN |
Ubuntu | 20.04 | noarch | ruby2.7 | < 2.7.0-5ubuntu1.4 | UNKNOWN |
Ubuntu | 20.04 | noarch | ruby2.7-dbgsym | < 2.7.0-5ubuntu1.4 | UNKNOWN |