CVE-2017-16229 (https://nvd.nist.gov/vuln/detail/CVE-2017-16229): In the Ox gem 2.8.1 for Ruby, the process crashes with a stack-based buffer over-read in the read_from_str function in sax_buf.c when a crafted input is supplied to sax_parse. @Maintainers 2.8.2 is in tree, please call for stabilization when ready. Thank you
amd64 stable
cleanup done
GLSA vote: no.