Описание
Nokogiri vulnerable to DoS while parsing XML documents
Nokogiri gem has Denial of Service via infinite loop when parsing XML documents
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2013-6460
- https://access.redhat.com/security/cve/cve-2013-6460
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-6460
- https://bugzilla.suse.com/show_bug.cgi?id=CVE-2013-6460
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90058
- https://github.com/rubysec/ruby-advisory-db/blob/master/gems/nokogiri/CVE-2013-6460.yml
- https://security-tracker.debian.org/tracker/CVE-2013-6460
- https://web.archive.org/web/20200229074427/https://www.securityfocus.com/bid/64513
- http://www.openwall.com/lists/oss-security/2013/12/27/2
Пакеты
Наименование
nokogiri
rubygems
Затронутые версииВерсия исправления
>= 1.5.0, < 1.5.11
1.5.11
Наименование
nokogiri
rubygems
Затронутые версииВерсия исправления
>= 1.6.0, < 1.6.1
1.6.1
Связанные уязвимости
CVSS3: 6.5
ubuntu
больше 6 лет назад
Nokogiri gem 1.5.x has Denial of Service via infinite loop when parsing XML documents
redhat
около 12 лет назад
Nokogiri gem 1.5.x has Denial of Service via infinite loop when parsing XML documents
CVSS3: 6.5
nvd
больше 6 лет назад
Nokogiri gem 1.5.x has Denial of Service via infinite loop when parsing XML documents
CVSS3: 6.5
debian
больше 6 лет назад
Nokogiri gem 1.5.x has Denial of Service via infinite loop when parsin ...