ALASRUBY3.0-2023-007

A flaw was found in the way the Ruby REXML library parsed XML documents. Parsing a specially crafted XML document using REXML and writing parsed data back to a new XML document results in creating a document with a different structure. This issue could affect the integrity of processed data in applications using REXML that parse XML documents, write data back to XML, and re-parse them again. (CVE-2021-28965)

aarch64:
    ruby-3.0.1-148.amzn2.aarch64
    ruby-devel-3.0.1-148.amzn2.aarch64
    ruby-libs-3.0.1-148.amzn2.aarch64
    rubygem-bigdecimal-3.0.0-148.amzn2.aarch64
    rubygem-io-console-0.5.7-148.amzn2.aarch64
    rubygem-json-2.5.1-148.amzn2.aarch64
    rubygem-psych-3.3.0-148.amzn2.aarch64
    ruby-debuginfo-3.0.1-148.amzn2.aarch64

noarch:
    rubygems-3.2.15-148.amzn2.noarch
    rubygems-devel-3.2.15-148.amzn2.noarch
    ruby-default-gems-3.0.1-148.amzn2.noarch
    rubygem-irb-1.3.5-148.amzn2.noarch
    rubygem-rdoc-6.3.0-148.amzn2.noarch
    ruby-doc-3.0.1-148.amzn2.noarch
    rubygem-bundler-2.2.15-148.amzn2.noarch
    rubygem-minitest-5.14.2-148.amzn2.noarch
    rubygem-power_assert-1.2.0-148.amzn2.noarch
    rubygem-rake-13.0.3-148.amzn2.noarch
    rubygem-rbs-1.0.4-148.amzn2.noarch
    rubygem-test-unit-3.3.7-148.amzn2.noarch
    rubygem-rexml-3.2.5-148.amzn2.noarch
    rubygem-rss-0.2.9-148.amzn2.noarch
    rubygem-typeprof-0.12.0-148.amzn2.noarch

src:
    ruby-3.0.1-148.amzn2.src

x86_64:
    ruby-3.0.1-148.amzn2.x86_64
    ruby-devel-3.0.1-148.amzn2.x86_64
    ruby-libs-3.0.1-148.amzn2.x86_64
    rubygem-bigdecimal-3.0.0-148.amzn2.x86_64
    rubygem-io-console-0.5.7-148.amzn2.x86_64
    rubygem-json-2.5.1-148.amzn2.x86_64
    rubygem-psych-3.3.0-148.amzn2.x86_64
    ruby-debuginfo-3.0.1-148.amzn2.x86_64