Package rubygem-rexml-3.3.9-4.module+el9.7.0+750+c4b549bf.noarch
| Name | rubygem-rexml |
|---|---|
| Epoch | 0 |
| Version | 3.3.9 |
| Release | 4.module+el9.7.0+750+c4b549bf |
| Architecture | noarch |
| Website/URL | https://github.com/ruby/rexml |
| License | BSD-2-Clause |
| Build Time | 2025-11-02 16:41:11 |
| Build Host | builder-x86-03.inferitos.ru |
| Summary | An XML toolkit for Ruby |
| Repositories | AppStream |
| Description | REXML was inspired by the Electric XML library for Java, which features an easy-to-use API, small size, and speed. Hopefully, REXML, designed with the same philosophy, has these same features. I've tried to keep the API as intuitive as possible, and have followed the Ruby methodology for method naming and code flow, rather than mirroring the Java API. REXML supports both tree and stream document parsing. Stream parsing is faster (about 1.5 times as fast). However, with stream parsing, you don't get access to features such as XPath. |
| Errata | — |
| Size | 117 KiB |
| Source Project | ruby-3.3.8-4.module+el9.7.0+750+c4b549bf |
| SHA-256 checksum | 920ec033d426070e4c46194123c9c06fbb3efe8a8499ec74b91752ac0916e15b |
×
![Full screenshot]()
* Fri Apr 11 2025 Jarek Prokop <jprokop@redhat.com> - 3.3.8-4 - Upgrade to Ruby 3.3.8. Resolves: RHEL-68631 - Fix Net::IMAP vulnerable to possible DoS by memory exhaustion. (CVE-2025-25186) - Fix Denial of Service in CGI::Cookie.parse. (CVE-2025-27219) Resolves: RHEL-86109 - Fix userinfo leakage in URI#join, URI#merge and URI#+. (CVE-2025-27221) * Wed Sep 04 2024 Jarek Prokop <jprokop@redhat.com> - 3.3.5-3 - Upgrade to Ruby 3.3.5 Resolves: RHEL-55411 - Fix DoS vulnerability in rexml. (CVE-2024-39908) (CVE-2024-41946) (CVE-2024-43398) Resolves: RHEL-57575 Resolves: RHEL-57572 Resolves: RHEL-57068 - Fix REXML DoS when parsing an XML having many specific characters such as whitespace character, >] and ]>. (CVE-2024-41123) Resolves: RHEL-57569 - Fix incorrect symlink for rubygem-irb's library. Resolves: RHEL-42646 * Mon May 20 2024 Jarek Prokop <jprokop@redhat.com> - 3.3.1-2 - Upgrade to Ruby 3.3.1. Resolves: RHEL-33976 - Fix buffer overread vulnerability in StringIO. (CVE-2024-27280) Resolves: RHEL-34130 - Fix RCE vulnerability with .rdoc_options in RDoc. (CVE-2024-27281) Resolves: RHEL-34122 - Fix Arbitrary memory address read vulnerability with Regex search. (CVE-2024-27282) Resolves: RHEL-33872 * Tue Apr 02 2024 MSVSphere Packaging Team <packager@msvsphere-os.ru> - 3.3.0-1 - Rebuilt for MSVSphere 9.4 beta * Wed Jan 17 2024 Jarek Prokop <jprokop@redhat.com> - 3.3.0-1 - Upgrade to Ruby 3.3.0. Resolves: RHEL-17089 * Sun Dec 03 2023 Jun Aruga <jaruga@redhat.com> - 3.1.2-142 - Bypass git submodule test failure on Git >= 2.38.1. - Fix tests with Europe/Amsterdam pre-1970 time on tzdata version 2022b. - Fix for tzdata-2022g. - Fix OpenSSL.fips_mode and OpenSSL::PKey.read in OpenSSL 3 FIPS. Resolves: RHEL-5590 - ssl: use ffdhe2048 from RFC 7919 as the default DH group parameters Related: RHEL-5590 - Disable fiddle tests that use FFI closures. Related: RHEL-5590