VYPR

rpm package

suse/rubygem-nokogiri&distro=SUSE Linux Enterprise Module for Basesystem 15 SP4

pkg:rpm/suse/rubygem-nokogiri&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4

Vulnerabilities (2)

  • CVE-2022-29181May 20, 2022
    affected < 1.8.5-150400.14.3.1fixed 1.8.5-150400.14.3.1

    Nokogiri is an open source XML and HTML library for Ruby. Nokogiri prior to version 1.13.6 does not type-check all inputs into the XML and HTML4 SAX parsers, allowing specially crafted untrusted inputs to cause illegal memory access errors (segfault) or reads from unrelated memor

  • CVE-2022-24836Apr 11, 2022
    affected < 1.8.5-150400.14.3.1fixed 1.8.5-150400.14.3.1

    Nokogiri is an open source XML and HTML library for Ruby. Nokogiri `< v1.13.4` contains an inefficient regular expression that is susceptible to excessive backtracking when attempting to detect encoding in HTML documents. Users are advised to upgrade to Nokogiri `>= 1.13.4`. Ther