RHSA-2024:6784MediumCVSS 5.9
Red Hat Security Advisory: ruby:3.3 security update
🔗 CVE IDs covered (4)
📋 Description
CVE-2024-39908 — rexml: DoS vulnerability in REXML CVE-2024-41123 — rexml: rubygem-rexml: DoS when parsing an XML having many specific characters such as whitespace character, >] and ]> CVE-2024-41946 — rexml: DoS vulnerability in REXML CVE-2024-43398 — rexml: DoS vulnerability in REXML
🔗 References (8)
- selfhttps://access.redhat.com/errata/RHSA-2024:6784
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2298243
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2302268
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2302272
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2307297
- externalhttps://issues.redhat.com/browse/RHEL-55409
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_6784.json