CVE-2013-6461 rubygem-nokogiri: DoS while parsing XML entities
Published: December 14, 2013
SECURITY IDENTIFIERS
- CVE: CVE-2013-6461 (NVD)
- GHSA: GHSA-jmhh-w7xp-wg39
- OSVDB: OSVDB-101458
GEM
SEVERITY
CVSS v3.x: 6.5 (Medium)
PATCHED VERSIONS
~> 1.5.11
>= 1.6.1
DESCRIPTION
Nokogiri gem 1.5.x and 1.6.x has DoS while parsing XML entities by failing to apply limits