oss-sec mailing list archives

Re: Re: 2012 CVE request: XXE in nokogiri ruby gem

From: "Steven M. Christey" <coley () mitre org>
Date: Mon, 5 Jan 2015 12:28:41 -0500 (EST)


On Sat, 3 Jan 2015, David Jorm wrote:

Just following up on this issue. Upstream has confirmed that no CVE IDwas ever assigned:
https://github.com/sparklemotion/nokogiri/issues/693#issuecomment-68426535


Use CVE-2012-6685.

---

CVE assignment team, MITRE CVE Numbering Authority M/S M300
202 Burlington Road, Bedford, MA 01730 USA
[ PGP key available through http://cve.mitre.org/cve/request_id.html ]

Current thread:

Re: 2012 CVE request: XXE in nokogiri ruby gem David Jorm (Jan 02)
- Re: Re: 2012 CVE request: XXE in nokogiri ruby gem Steven M. Christey (Jan 05)