AVG-1789 log
| Package | ruby |
| Status | Fixed |
| Severity | Critical |
| Type | incorrect calculation |
| Affected | 2.7.2-1 |
| Fixed | 3.0.1-1 |
| Current | 3.0.6-1 [extra] |
| Ticket | None |
| Created | Thu Apr 8 19:30:34 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-28965 | Critical | Yes | Incorrect calculation | When parsing and serializing a crafted XML document, the REXML gem (including the one bundled with Ruby) can create a wrong XML document whose structure is... |