FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-16 12:24:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
13c54e6d-5c45-11eb-b4e2-001b217b3468	nokogiri -- Security vulnerability Nokogiri reports: In Nokogiri versions <= 1.11.0.rc3, XML Schemas parsed by Nokogiri::XML::Schema were trusted by default, allowing external resources to be accessed over the network, potentially enabling XXE or SSRF attacks. Discovery 2021-01-22 Entry 2021-01-22 rubygem-nokogiri rubygem-nokogiri18 < 1.11.0.rc3 https://nokogiri.org/CHANGELOG.html CVE-2020-26247

VuXML ID

Description

13c54e6d-5c45-11eb-b4e2-001b217b3468

nokogiri -- Security vulnerability

Nokogiri reports:

In Nokogiri versions <= 1.11.0.rc3, XML Schemas parsed by Nokogiri::XML::Schema were trusted by default, allowing external resources to be accessed over the network, potentially enabling XXE or SSRF attacks.

Discovery 2021-01-22
Entry 2021-01-22
rubygem-nokogiri
rubygem-nokogiri18

< 1.11.0.rc3

https://nokogiri.org/CHANGELOG.html
CVE-2020-26247