All errata/sisyphus_loongarch64/ALT-PU-2024-2138-1
ALT-PU-2024-2138-1

Package update gem-nokogiri in branch sisyphus_loongarch64

Version1.16.2-alt1
Task#0
Published2024-02-11
Max severityHIGH
Severity:

Closed issues (1)

CVE-2024-25062
HIGH7.5

An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.

Published: 2024-02-04Modified: 2025-11-03
CVSS 3.xHIGH 7.5
CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References