2 matches found
CVE-2024-43398 affecting package rubygem-rexml for versions less than 3.3.9-1
CVE-2024-43398 affecting package rubygem-rexml for versions less than 3.3.9-1. An upgraded version of the package is available that resolves this issue...
CLSA-2025-1746653856 ruby: Fix of 2 CVEs
upgrade rexml version to 3.3.3 - CVE-2024-41946: fix DoS vulnerability when parsing many entity expansions with SAX2 or pull parser API - CVE-2024-41123: fix DoS vulnerability when parsing XML with specific characters...