Nokogiri is an open source XML and HTML library for Ruby. Nokogiri `< v1.13.4` contains an inefficient regular expression that is susceptible to excessive backtracking when attempting to detect encoding in HTML documents. Users are advised to upgrade to Nokogiri `>= 1.13.4`. There are no known workarounds for this issue.
History

Fri, 22 Nov 2024 12:00:00 +0000

Type Values Removed Values Added
References

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2022-04-11T00:00:00

Updated: 2024-09-03T12:03:46.858Z

Reserved: 2022-02-10T00:00:00

Link: CVE-2022-24836

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-04-11T22:15:07.347

Modified: 2024-11-21T06:51:12.280

Link: CVE-2022-24836

cve-icon Redhat

Severity : Important

Publid Date: 2022-04-11T00:00:00Z

Links: CVE-2022-24836 - Bugzilla