3 matches found
Ubuntu 20.04 LTS / 22.04 LTS : Nokogiri vulnerabilities (USN-7659-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7659-1 advisory. It was discovered Nokogiri did not correctly parse XML Schemas. If a user or automated system were tricked into opening a specially crafted...
USN-7659-1: Nokogiri vulnerabilities
It was discovered Nokogiri did not correctly parse XML Schemas. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 20.04 LTS. CVE-2020-26247 Agustin Gianni discovere...
PT-2020-5511 · Nokogiri +4 · Nokogiri +4
Name of the Vulnerable Software and Affected Versions: Nokogiri versions prior to 1.11.0.rc4 Nokogiri versions 1.10.10 and earlier Nokogiri prereleases 1.11.0.rc1, 1.11.0.rc2, and 1.11.0.rc3 Description: The issue is related to the incorrect restriction of XML links to external objects, allowing...