title: Nokogiri gem, via libxml, is affected by DoS vulnerabilities
The version of libxml2 packaged with Nokogiri contains a
vulnerability. Nokogiri has mitigated these issue by upgrading to
It was discovered that libxml2 incorrecty handled certain files. An attacker
could use this issue with specially constructed XML data to cause libxml2 to
consume resources, leading to a denial of service.
- ">= 1.8.2"
url: '["https://usn.ubuntu.com/usn/usn-3513-1/", "https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-15412.html"]'