RHSA-2025:4063MediumCVSS 5.9

Red Hat Security Advisory: ruby:3.1 security update

Published
April 23, 2025
Last Modified
June 30, 2026

🔗 CVE IDs covered (7)

📋 Description

CVE-2024-39908 — rexml: DoS vulnerability in REXML CVE-2024-41123 — rexml: rubygem-rexml: DoS when parsing an XML having many specific characters such as whitespace character, >] and ]> CVE-2024-41946 — rexml: DoS vulnerability in REXML CVE-2024-43398 — rexml: DoS vulnerability in REXML CVE-2025-27219 — CGI: Denial of Service in CGI::Cookie.parse CVE-2025-27220 — CGI: ReDoS in CGI::Util#escapeElement CVE-2025-27221 — uri: userinfo leakage in URI#join, URI#merge and URI#+

🔗 References (11)