AVG-1788 log
Package | ruby-rexml |
Status | Fixed |
Severity | Critical |
Type | incorrect calculation |
Affected | 3.2.4-1 |
Fixed | 3.2.5-1 |
Current | 3.3.9-1 [extra] |
Ticket | None |
Created | Thu Apr 8 19:23:35 2021 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2021-28965 | Critical | Yes | Incorrect calculation | When parsing and serializing a crafted XML document, the REXML gem (including the one bundled with Ruby) can create a wrong XML document whose structure is... |