HIGH 7.5

GHSA-vmfx-gcfq-wvm2

Nokogiri implementation of libxslt vulnerable to heap corruption

Details

Type confusion in `xsltNumberFormatGetMultipleLevel` prior to libxslt 1.1.33 could allow attackers to potentially exploit heap corruption via crafted XML data.

Nokogiri prior to version 1.10.5 contains a vulnerable version of libxslt. Nokogiri version 1.10.5 upgrades the dependency to libxslt 1.1.34, which contains a patch for this issue.

Are you affected?

Enter the version of the package you're using.

Affected packages

RubyGems / nokogiri

Introduced in: 0 Fixed in: 1.10.5

Fix bundle update nokogiri

References

https://nvd.nist.gov/vuln/detail/CVE-2019-5815 [ADVISORY]
https://github.com/sparklemotion/nokogiri/issues/2630 [WEB]
https://github.com/rubysec/ruby-advisory-db/blob/master/gems/nokogiri/CVE-2019-5815.yml [WEB]
https://github.com/sparklemotion/nokogiri [PACKAGE]
https://gitlab.gnome.org/GNOME/libxslt/commit/08b62c25871b38d5d573515ca8a065b4b8f64f6b [WEB]
https://lists.debian.org/debian-lts-announce/2022/09/msg00010.html [WEB]