letter_opener_web icon indicating copy to clipboard operation
letter_opener_web copied to clipboard

Published 20 hours ago verified publisher icon fgrehm

Bump rexml to v3.3.2

Open rajraj opened this issue 7 months ago • 0 comments

The REXML gem before 3.3.1 has some DoS vulnerabilities when it parses an XML that has many specific characters such as <, 0 and %>.

The REXML gem 3.3.2 or later include the patches to fix these vulnerabilities.

https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8

rajraj avatar Jul 17 '24 16:07 rajraj