Sha256: e699b116449a0b0033259745066ef89affd3b1a6d3ffb12764d6b9c54cc925b3

Contents?: true

Size: 534 Bytes

Versions: 6

Compression:

Stored size: 534 Bytes

Contents

---
engine: ruby
cve: 2013-1821
osvdb: 90587
url: http://www.osvdb.org/show/osvdb/90587
title: Ruby REXML Library Crafted XML File Text Node Handling DoS
date: 2013-02-22
description: |
  Ruby contains a flaw in the REXML library that may allow a denial of
  service. The issue is triggered when handling a file text node in a specially crafted
  XML file. This may allow a context-dependent attacker to cause a consumption of
  memory resources and crash the program.
cvss_v2: 5.0
patched_versions:
  - ~> 1.9.3.392
  - ">= 2.0.0.0"

Version data entries

6 entries across 6 versions & 2 rubygems

Version Path
bundler-audit-0.7.0.1 data/ruby-advisory-db/rubies/ruby/CVE-2013-1821.yml
bundler-budit-0.6.2 data/ruby-advisory-db/rubies/ruby/OSVDB-90587.yml
bundler-budit-0.6.1 data/ruby-advisory-db/rubies/ruby/OSVDB-90587.yml
bundler-audit-0.6.1 data/ruby-advisory-db/rubies/ruby/OSVDB-90587.yml
bundler-audit-0.6.0 data/ruby-advisory-db/rubies/ruby/OSVDB-90587.yml
bundler-audit-0.5.0 data/ruby-advisory-db/rubies/ruby/OSVDB-90587.yml