Nokogiri v1.11.4

Version Release Notes from May 14, 2021 (almost 3 years ago)

« Changelog History

Nokogiri v1.11.4 Release Notes

Release Date: 2021-05-14 // almost 3 years ago

🔒 Security

⬆️ [CRuby] Vendored libxml2 upgraded to v2.9.12 which addresses:
- 🔒 CVE-2019-20388
- 🔒 CVE-2020-24977
- 🔒 CVE-2021-3517
- 🔒 CVE-2021-3518
- 🔒 CVE-2021-3537
- 🔒 CVE-2021-3541
🚀 Note that two additional CVEs were addressed upstream but are not relevant to this release. CVE-2021-3516 via xmllint is not present in Nokogiri, and CVE-2020-7595 has been patched in Nokogiri since v1.10.8 (see #1992).

🔒 Please see nokogiri/GHSA-7rrm-v45f-jp64 or #2233 for a more complete analysis of these CVEs and patches.

Dependencies
- 🚀 [CRuby] vendored libxml2 is updated from 2.9.10 to 2.9.12. (Note that 2.9.11 was skipped because it was superseded by 2.9.12 a few hours after its release.)

Awesome Ruby is part of the LibHunt network. Terms. Privacy Policy.