Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Nokogiri gem, via libxml, is affected by DoS vulnerabilities #10

Open
sniffler-app bot opened this issue Jun 13, 2023 · 0 comments
Open

Nokogiri gem, via libxml, is affected by DoS vulnerabilities #10

sniffler-app bot opened this issue Jun 13, 2023 · 0 comments
Labels
dependabot high security

Comments

@sniffler-app
Copy link

sniffler-app bot commented Jun 13, 2023

Description

parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities.

Informations

Manifest Path: Gemfile.lock

Please look at dependabot report: https://github.com/swipely/rolodecks/security/dependabot/109
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
dependabot high security
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
0 participants