FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
13c54e6d-5c45-11eb-b4e2-001b217b3468	nokogiri -- Security vulnerability Nokogiri reports: In Nokogiri versions <= 1.11.0.rc3, XML Schemas parsed by Nokogiri::XML::Schema were trusted by default, allowing external resources to be accessed over the network, potentially enabling XXE or SSRF attacks. Discovery 2021-01-22 Entry 2021-01-22 rubygem-nokogiri rubygem-nokogiri18 lt 1.11.0.rc3 https://nokogiri.org/CHANGELOG.html CVE-2020-26247

VuXML ID

Description

13c54e6d-5c45-11eb-b4e2-001b217b3468

nokogiri -- Security vulnerability

Nokogiri reports:

In Nokogiri versions <= 1.11.0.rc3, XML Schemas parsed by Nokogiri::XML::Schema were trusted by default, allowing external resources to be accessed over the network, potentially enabling XXE or SSRF attacks.

Discovery 2021-01-22
Entry 2021-01-22
rubygem-nokogiri
rubygem-nokogiri18

lt 1.11.0.rc3

https://nokogiri.org/CHANGELOG.html
CVE-2020-26247