Search for packages
Package details: pkg:gem/nokogiri@1.16
purl pkg:gem/nokogiri@1.16
Tags Ghost
Next non-vulnerable version 1.18.8
Latest non-vulnerable version 1.18.8
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-3x6j-ugme-aaas
Aliases:
GHSA-xc9x-jj77-9p9j
GMS-2024-127
Nokogiri update packaged libxml2 to v2.12.5 to resolve CVE-2024-25062
1.16.2
Affected by 7 other vulnerabilities.
VCID-u9nd-yvuf-aaas
Aliases:
GHSA-vcc3-rw6f-jv97
Use-after-free in libxml2 via Nokogiri::XML::Reader
1.16.2
Affected by 7 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-05-23T00:59:12.446440+00:00 Ruby Importer Affected by VCID-u9nd-yvuf-aaas https://github.com/rubysec/ruby-advisory-db/blob/master/gems/nokogiri/GHSA-vcc3-rw6f-jv97.yml 36.0.0
2024-09-18T08:44:08.695321+00:00 Ruby Importer Affected by VCID-3x6j-ugme-aaas https://github.com/rubysec/ruby-advisory-db/blob/master/gems/nokogiri/GHSA-xc9x-jj77-9p9j.yml 34.0.1
2024-04-23T22:45:11.991572+00:00 Ruby Importer Affected by VCID-3x6j-ugme-aaas https://github.com/rubysec/ruby-advisory-db/blob/master/gems/nokogiri/GHSA-xc9x-jj77-9p9j.yml 34.0.0rc4