REXML is an XML toolkit for Ruby. The REXML gem before 3.3.2 has some DoS vulnerabilities when it parses an XML that has many specific characters such as whitespace character, `>]` and `]>`. The REXML gem 3.3.3 or later include the patches to fix these vulnerabilities.
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:6670 https://access.redhat.com/errata/RHSA-2024:6670
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Via RHSA-2024:6702 https://access.redhat.com/errata/RHSA-2024:6702
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2024:6703 https://access.redhat.com/errata/RHSA-2024:6703
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:6784 https://access.redhat.com/errata/RHSA-2024:6784
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:6785 https://access.redhat.com/errata/RHSA-2024:6785