REXML has a DoS Vulnerability
Closed this issue · 1 comments
spilth commented
After merging #323 the build failed due to a vulnerability in the rexml gem.
Name: rexml
Version: 3.3.1
CVE: CVE-2024-39908
Criticality: Unknown
URL: GHSA-4xqq-m2hx-25v8
Title: DoS in REXML
Solution: upgrade to '>= 3.3.2'
We need to upgrade from 3.3.1 to 3.3.2 to address this issue.