ELA-609-1 ruby-nokogiri security update

Debian 9911 Published by

A ruby-nokogiri security update has been released for Debian GNU/Linux 8 Extended LTS to address a potential denial of service attack.



ELA-609-1 ruby-nokogiri security update

Package ruby-nokogiri
Version 1.6.3.1+ds-1+deb8u3
Related CVEs CVE-2022-24836

It was discovered that there was a potential denial of service attack in ruby-nokogiri, a HTML, XML, SAX etc. parser written in/for the Ruby programming language. This was caused by the use of inefficient regular expressions that were susceptible to excessive backtracking.

For Debian 8 Jessie, these problems have been fixed in version 1.6.3.1+ds-1+deb8u3.

We recommend that you upgrade your ruby-nokogiri packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/

  ELA-609-1 ruby-nokogiri security update

SUSE-SU-2022:1657-1: moderate: Security update for curl

Lenovo ThinkCentre M75n Nano Review and more

Windows

Linux

macOS

Community

  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...
  • Philipp
    I would try the XanMod kernel: https://xanmod.orgĀ  I ...