44 matches found
SUSE-SU-2021:0210-1 Security update for rubygem-nokogiri
This update for rubygem-nokogiri fixes the following issues: - CVE-2019-5477: Fixed a command injection vulnerability bsc1146578. - CVE-2020-26247: Fixed an XXE vulnerability in Nokogiri::XML::Schema bsc1180507...
CVE-2013-6460 rubygem-nokogiri: DoS while parsing XML documents
Nokogiri gem 1.5.x has Denial of Service via infinite loop when parsing XML documents...
CVE-2013-6461 rubygem-nokogiri: DoS while parsing XML entities
Nokogiri gem 1.5.x and 1.6.x has DoS while parsing XML entities by failing to apply limits...
CVE-2012-6685 rubygem-nokogiri: XML eXternal Entity (XXE) flaw
Nokogiri before 1.5.4 is vulnerable to XXE attacks...