Medium5.9Red Hat Linux Updated
Denial of Service via out-of-bounds read
CVE-2026-57235 Published Jun 25, 2026Updated by vendor Jun 25, 2026
Affected products & platforms
Red Hat LinuxUnclassified
Summary
Denial of Service via out-of-bounds read. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-125.
Affected versions
- < 1.19.4
Official advisory · high-confidence parse· fetched 7 hours ago·verify at source
Mitigation checklist
Recommended fix / mitigation
- There is no mitigation for this flaw other than upgrading to Nokogiri 1.19.4 or later. If upgrading is not immediately possible, review application code to ensure that untrusted user input is not passed as an index to `Nokogiri::XML::NodeSet#[]` or `#slice` methods.
Official advisory · high-confidence parse· fetched 7 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.