CVE-2026-57435

UNKNOWN 0.0

Nokogiri: Possible Use-After-Free when setting an attribute value via `Nokogiri::XML::Attr#value=` or `#content=`

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri’s CRuby native extension could leave a Ruby wrapper pointing to freed memory when replacing the value of an XML attribute. If Ruby code had already accessed an attribute child node, Nokogiri::XML::Attr#value= could free the underlying native child node while the wrapper remained reachable through the document node cache. A later use of the freed child node or a Ruby GC mark could dereference an invalid pointer, causing an invalid read and a possible segfault. This vulnerability is fixed in 1.19.4.

CWE	CWE-416 CWE-825
Vendor	sparklemotion
Product	nokogiri
Published	Jun 25, 2026
Last Updated	Jun 25, 2026

Stay Ahead of the Next One

Get instant alerts for sparklemotion nokogiri

Be the first to know when new unknown vulnerabilities affecting sparklemotion nokogiri are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

sparklemotion / nokogiri

< 1.19.4

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-phwj-rprq-35pp