2 matches found
Astra Linux – Vulnerability in ruby-loofah
Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri. Loofah = 2.2.0; versions before 2.19.1 use recursion to sanitize CDATA sections. This can lead to stack exhaustion and raise a SystemStackError exception, potentially causing ...
CLSA-2026-1768301582 ruby: Fix of CVE-2025-24294
CVE-2025-24294: Limit the length of a decompressed domain name to prevent DoS in resolv gem...