Ruby

CVE-2024-43398: DoS vulnerability in REXML

Updated: 2024-08-22 03:00:00

: Ruby A Programmer's Best Friend Home Downloads Documentation Libraries Community News Security About Ruby Menu CVE-2024-43398 : DoS vulnerability in REXML Posted by kou on 22 Aug 2024 There is a DoS vulnerability in REXML gem . This vulnerability has been assigned the CVE identifier CVE-2024-43398 We strongly recommend upgrading the REXML . gem Details When parsing an XML that has many deep elements that have same local name . attributes Itâ s only affected with the tree parser API . If youâ re using REXML : Document.new to parse an XML , you may be . affected Please update REXML gem to version 3.3.6 or . later Affected versions REXML gem 3.3.5 or prior Credits Thanks to l33thaxor for discovering this . issue History Originally published at 2024-08-22 03:00:00 UTC Recent News

Current Feed Items | Previous Months Items
Jul 2024 | Jun 2024 | May 2024 | Apr 2024 | Mar 2024 | Feb 2024

Get Feed

RSS Feed

Atom Feed

Add your blog here

Sources

1 - Ruby News

Ruby

The Ruby scripting language

CVE-2024-43398: DoS vulnerability in REXML

Current Feed Items | Previous Months ItemsJul 2024 | Jun 2024 | May 2024 | Apr 2024 | Mar 2024 | Feb 2024

Current Feed Items | Previous Months Items

Get Feed

Add your blog here

Sources

1 - Ruby News

Current Feed Items | Previous Months Items
Jul 2024 | Jun 2024 | May 2024 | Apr 2024 | Mar 2024 | Feb 2024