Nokogiri is an open source XML and HTML library for Ruby. Nokogiri `< v1.13.4` contains an inefficient regular expression that is susceptible to excessive backtracking when attempting to detect encoding in HTML documents. Users are advised to upgrade to Nokogiri `>= 1.13.4`. There are no known workarounds for this issue.
Metrics
Affected Vendors & Products
References
History
Fri, 22 Nov 2024 12:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2022-04-11T00:00:00
Updated: 2024-09-03T12:03:46.858Z
Reserved: 2022-02-10T00:00:00
Link: CVE-2022-24836
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-04-11T22:15:07.347
Modified: 2024-11-21T06:51:12.280
Link: CVE-2022-24836
Redhat