Back to bug 2008914

Who	When	What	Removed	Added
Guilherme de Almeida Suckevicz	2021-09-29 13:40:19 UTC	Depends On		2008916, 2008915
Guilherme de Almeida Suckevicz	2021-09-29 13:42:16 UTC	Blocks		2008917
Mamoru TASAKA	2021-09-29 13:56:36 UTC	Flags		needinfo?(gsuckevi)
Guilherme de Almeida Suckevicz	2021-09-29 14:15:03 UTC	Flags	needinfo?(gsuckevi)
Sandipan Roy	2021-10-01 07:03:25 UTC	Fixed In Version		rubygem-nokogiri 1.12.5
Sandipan Roy	2021-10-01 07:03:55 UTC	Depends On		2009647
Sandipan Roy	2021-10-01 13:28:11 UTC	Resolution	---	NOTABUG
		Status	NEW	CLOSED
		Last Closed		2021-10-01 13:28:11 UTC
Sandipan Roy	2021-10-01 13:28:45 UTC	CC		saroy
Sandipan Roy	2021-10-01 13:37:18 UTC	Status	CLOSED	NEW
		Resolution	NOTABUG	---
		Keywords		Reopened
Sandipan Roy	2021-10-01 13:38:42 UTC	Keywords	Reopened
Sandipan Roy	2021-10-01 13:58:32 UTC	Comment	6	updated
Yadnyawalk Tale	2021-10-08 19:48:15 UTC	Doc Text		A XML External Entity Reference (XXE) vulnerability was found in RubyGem Nokogiri on JRuby (Java implementation of the Ruby). If attacker is able to insert untrusted XML input containing a reference to an external entity, it is processed by a weakly configured SAX parser, resulting disclosure of confidential data and server side request forgery. The highest threat from this vulnerability is to system confidentiality.
Yadnyawalk Tale	2021-10-08 19:51:16 UTC	Comment	7	updated
Tomer Brisker	2021-12-14 09:23:51 UTC	CC	tbrisker
Red Hat Bugzilla	2022-07-18 09:51:20 UTC	CC	mmccune
Red Hat Bugzilla	2022-10-08 04:27:52 UTC	CC	gghezzo
Red Hat Bugzilla	2023-03-02 08:27:49 UTC	CC	myarboro
Red Hat Bugzilla	2023-05-15 18:09:19 UTC	CC	drieden
Red Hat Bugzilla	2023-05-15 20:19:01 UTC	CC	btotty
Red Hat Bugzilla	2023-07-07 08:29:59 UTC	Assignee	security-response-team	nobody

Back to bug 2008914