Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:gem/nokogiri@1.1.28
purl pkg:gem/nokogiri@1.1.28
Tags Ghost
Next non-vulnerable version 1.19.1
Latest non-vulnerable version 1.19.1
Risk 3.4
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-5uqv-dm9p-c7c6
Aliases:
CVE-2016-1683
Improper Restriction of Operations within the Bounds of a Memory Buffer nokogiri mishandles namespace nodes, which allows remote attackers to cause a denial of service (out-of-bounds heap memory access) or possibly have unspecified other impact via a crafted document.
1.2.0
Affected by 53 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T12:47:04.050785+00:00 GitLab Importer Affected by VCID-5uqv-dm9p-c7c6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/nokogiri/CVE-2016-1683.yml 38.0.0