ALAS2RUBY3.0-2023-007 --- ruby| ID: oval:org.secpod.oval:def:1701656 | Date: (C)2023-10-26 (M)2024-01-29 |
| Class: PATCH | Family: unix |
A flaw was found in the way the Ruby REXML library parsed XML documents. Parsing a specially crafted XML document using REXML and writing parsed data back to a new XML document results in creating a document with a different structure. This issue could affect the integrity of processed data in applications using REXML that parse XML documents, write data back to XML, and re-parse them again
| Product: |
| ruby |
| rubygem-bigdecimal |
| rubygem-bundler |
| rubygem-rexml |
| rubygem-io-console |
| rubygem-irb |
| rubygem-json |
| rubygem-minitest |
| rubygem-rss |
| rubygem-rbs |
| rubygem-power_assert |
| rubygem-psych |
| rubygem-rdoc |
| rubygem-test-unit |
| rubygem-typeprof |
| rubygems |
| rubygem-rake |
