[CLSA-2026:1780921069] Fix CVE(s): CVE-2024-35176, CVE-2024-39908
Type:
security
Severity:
Moderate
Release date:
2026-06-08 12:20:17 UTC
Description:
* SECURITY UPDATE: REXML DoS via attribute value with many '>' characters - debian/patches/CVE-2024-35176.patch: replace the per-'>'-chunk re-read loop in parse_attributes with a single-pass read of the attribute value up to the closing quote followed by a read up to the actual tag end, so that an attribute value containing N repeated '>' characters parses in O(N) time instead of O(N**2). Also fix the latent EOF handling in IOSource#match introduced with CVE-2024-41123 so the partially-filled buffer is matched against the pattern one last time before the source is declared exhausted, which is now exercised by the new value-rest read. - CVE-2024-35176 * SECURITY UPDATE: REXML ReDoS via repeated spaces in ATTLIST - debian/patches/CVE-2024-39908.patch: strip the matched ATTLIST contents before applying ATTDEF_RE so that trailing whitespace after a valid attdef does not trigger catastrophic backtracking in the per-attdef scan. Adapted byte-identically from upstream ruby/rexml@1f1e6e9; the other eight commits referenced by this CVE address O(N**2) source.match interactions that are already mitigated here by the min_bytes-doubling introduced in the CVE-2024-41123 backport (verified by microbench against all eight upstream test vectors at N=200000). - CVE-2024-39908
CVEs fixed:
Updated packages:
  • alt-ruby27_2.7.8-4_amd64.deb
    sha:7fdd95614bf07953cb7795d736d9c285d58f5f6a
  • alt-ruby27-default-gems_2.7.8-4_amd64.deb
    sha:a98a910552182c1ab2d225e02719237202fe0bff
  • alt-ruby27-devel_2.7.8-4_amd64.deb
    sha:c1a1df7d96c6ffdbea5a5bbae10aa7b1a8d588e8
  • alt-ruby27-doc_2.7.8-4_amd64.deb
    sha:3ed2b500c77799d1efadfdbf5795b32b06944935
  • alt-ruby27-libs_2.7.8-4_amd64.deb
    sha:b0542ed07acfe42fcd0774bb70f8cce4af31c015
  • alt-ruby27-rubygem-bigdecimal_2.0.0-4_amd64.deb
    sha:a16ee3021daf222de56cf701606f482c24e0f49e
  • alt-ruby27-rubygem-bundler_2.2.24-4_amd64.deb
    sha:31e5a41928daf366d86b96fe1ba7c83284fc48be
  • alt-ruby27-rubygem-io-console_0.5.6-4_amd64.deb
    sha:bab3432ca3cc940fe55f4d5e0621d92714c7cbb6
  • alt-ruby27-rubygem-irb_1.2.6-4_amd64.deb
    sha:15fbe020ffdeb4411ffeae93e86297a9f8e45f45
  • alt-ruby27-rubygem-json_2.3.0-4_amd64.deb
    sha:2af205c33d3d283ba77acc95f6809f737f6c50d5
  • alt-ruby27-rubygem-minitest_5.13.0-4_amd64.deb
    sha:3640c33844f5aeacd84176e56c71d8712067e64d
  • alt-ruby27-rubygem-net-telnet_0.2.0-4_amd64.deb
    sha:7634c68e807bc19a5be2659810c66b9f731f81d0
  • alt-ruby27-rubygem-power-assert_1.1.7-4_amd64.deb
    sha:4e78a1805c9750cb37611c374b93ad4a317f608c
  • alt-ruby27-rubygem-psych_3.1.0-4_amd64.deb
    sha:ca517528828d170f748e314ac77a8eed04da3c91
  • alt-ruby27-rubygem-rake_13.0.1-4_amd64.deb
    sha:d71c49599b494efe6138a05aef267349cf2025f1
  • alt-ruby27-rubygem-rdoc_6.2.1.1-4_amd64.deb
    sha:e1eee734c8b81bae0445d27e4a83056abb5faf42
  • alt-ruby27-rubygem-test-unit_3.3.4-4_amd64.deb
    sha:cbde522cbbb3bd4aff17051fcf8e5bd841ef1077
  • alt-ruby27-rubygem-typeprof_2.7.8-4_amd64.deb
    sha:bbdf4b5e4a023769b247791f0ba1b1c5af7f53c5
  • alt-ruby27-rubygem-xmlrpc_0.3.0-4_amd64.deb
    sha:65f1b64490f80d006a611e0c72d990748d516df8
  • alt-ruby27-rubygems_3.1.6-4_amd64.deb
    sha:9ba25eb020fca6d8bd9e55c69c57aab761b9f83d
  • alt-ruby27-rubygems-devel_3.1.6-4_amd64.deb
    sha:8959b38466b5a59ab049286d0a1a86731437a4fc
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.