[GHSA-qg2f-7w4r-25f2] A flaw was found in REXML. A remote attacker could...

[billcavalieri2]

Updates

• Affected products
• Summary

Comments
Added affected product and title

[github-actions]

👋 This pull request has been marked as stale because it has been open with no activity. You can: comment on the issue or remove the stale label to hold stale off for a while, add the Keep label to hold stale off permanently, or do nothing. If you do nothing this pull request will be closed eventually by the stale bot. Please see CONTRIBUTING.md for more policy details.

[taladrane]

thank you so much for contributing to the GitHub Advisory Database! 👋 this advisory appears to be specific to Red Hat Satellite Client, regardless of what the CVE description says, which is out of scope for our database

• the Red Hat bugzilla reference says "an incomplete fix was released for Red Hat Satellite Client for CVE-2024-49761." only Red Hat Satellite is updated in the bugzilla entry
• however, the bugzilla entry for CVE-2024-49761 updates many other Red Hat apps to fix the REXML vulnerability

This database is free, open, and accessible to all, and it's people like you who make it great. Thanks for choosing to help others. We hope you send in more contributions in the future!