Количество 40
Количество 40
RLSA-2024:6785
Moderate: ruby:3.3 security update
RLSA-2024:6784
Moderate: ruby:3.3 security update
ELSA-2024-6785
ELSA-2024-6785: ruby:3.3 security update (MODERATE)
ELSA-2024-6784
ELSA-2024-6784: ruby:3.3 security update (MODERATE)
SUSE-SU-2024:3874-1
Security update for ruby2.5
openSUSE-SU-2025:0129-1
Security update for rubygem-rexml
RLSA-2025:4488
Moderate: ruby:3.1 security update
RLSA-2025:4063
Moderate: ruby:3.1 security update
ELSA-2025-4488
ELSA-2025-4488: ruby:3.1 security update (MODERATE)
ELSA-2025-4063
ELSA-2025-4063: ruby:3.1 security update (MODERATE)
ELSA-2024-6670
ELSA-2024-6670: pcs security update (MODERATE)
ROS-20240918-12
Множественные уязвимости rubygem-rexml
CVE-2024-39908
REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `<`, `0` and `%>`. If you need to parse untrusted XMLs, you many be impacted to these vulnerabilities. The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities. Users are advised to upgrade. Users unable to upgrade should avoid parsing untrusted XML strings.
CVE-2024-39908
REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `<`, `0` and `%>`. If you need to parse untrusted XMLs, you many be impacted to these vulnerabilities. The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities. Users are advised to upgrade. Users unable to upgrade should avoid parsing untrusted XML strings.
CVE-2024-39908
REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `<`, `0` and `%>`. If you need to parse untrusted XMLs, you many be impacted to these vulnerabilities. The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities. Users are advised to upgrade. Users unable to upgrade should avoid parsing untrusted XML strings.
CVE-2024-39908
CVE-2024-39908
REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some ...
GHSA-4xqq-m2hx-25v8
REXML denial of service vulnerability
BDU:2024-08621
Уязвимость набора инструментов XML для Ruby REXML, связанная с неконтролируемым пот реблением ресурсов, позволяющая нарушителю вызвать отказ в обслуживании
CVE-2024-41123
REXML is an XML toolkit for Ruby. The REXML gem before 3.3.2 has some DoS vulnerabilities when it parses an XML that has many specific characters such as whitespace character, `>]` and `]>`. The REXML gem 3.3.3 or later include the patches to fix these vulnerabilities.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | RLSA-2024:6785 Moderate: ruby:3.3 security update | больше 1 года назад | ||
| RLSA-2024:6784 Moderate: ruby:3.3 security update | больше 1 года назад | ||
| ELSA-2024-6785 ELSA-2024-6785: ruby:3.3 security update (MODERATE) | больше 1 года назад | ||
| ELSA-2024-6784 ELSA-2024-6784: ruby:3.3 security update (MODERATE) | больше 1 года назад | ||
 | SUSE-SU-2024:3874-1 Security update for ruby2.5 | около 1 года назад | ||
| openSUSE-SU-2025:0129-1 Security update for rubygem-rexml | 9 месяцев назад | ||
| RLSA-2025:4488 Moderate: ruby:3.1 security update | 6 месяцев назад | ||
| RLSA-2025:4063 Moderate: ruby:3.1 security update | 6 месяцев назад | ||
| ELSA-2025-4488 ELSA-2025-4488: ruby:3.1 security update (MODERATE) | 9 месяцев назад | ||
| ELSA-2025-4063 ELSA-2025-4063: ruby:3.1 security update (MODERATE) | 9 месяцев назад | ||
| ELSA-2024-6670 ELSA-2024-6670: pcs security update (MODERATE) | больше 1 года назад | ||
 | ROS-20240918-12 Множественные уязвимости rubygem-rexml | CVSS3: 7.5 | больше 1 года назад | |
 | CVE-2024-39908 REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `<`, `0` and `%>`. If you need to parse untrusted XMLs, you many be impacted to these vulnerabilities. The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities. Users are advised to upgrade. Users unable to upgrade should avoid parsing untrusted XML strings. | CVSS3: 4.3 | 6% Низкий | больше 1 года назад |
 | CVE-2024-39908 REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `<`, `0` and `%>`. If you need to parse untrusted XMLs, you many be impacted to these vulnerabilities. The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities. Users are advised to upgrade. Users unable to upgrade should avoid parsing untrusted XML strings. | CVSS3: 4.3 | 6% Низкий | больше 1 года назад |
 | CVE-2024-39908 REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as `<`, `0` and `%>`. If you need to parse untrusted XMLs, you many be impacted to these vulnerabilities. The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities. Users are advised to upgrade. Users unable to upgrade should avoid parsing untrusted XML strings. | CVSS3: 4.3 | 6% Низкий | больше 1 года назад |
 | CVSS3: 4.3 | 6% Низкий | больше 1 года назад | |
| CVE-2024-39908 REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some ... | CVSS3: 4.3 | 6% Низкий | больше 1 года назад |
| GHSA-4xqq-m2hx-25v8 REXML denial of service vulnerability | CVSS3: 4.3 | 6% Низкий | больше 1 года назад |
 | BDU:2024-08621 Уязвимость набора инструментов XML для Ruby REXML, связанная с неконтролируемым пот реблением ресурсов, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 4.3 | 6% Низкий | больше 1 года назад |
| CVE-2024-41123 REXML is an XML toolkit for Ruby. The REXML gem before 3.3.2 has some DoS vulnerabilities when it parses an XML that has many specific characters such as whitespace character, `>]` and `]>`. The REXML gem 3.3.3 or later include the patches to fix these vulnerabilities. | CVSS3: 5.3 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу