Package: ruby-rexml
Severity: grave
Tags: security
X-Debbugs-Cc: Debian Security Team <team at security.debian.org>
https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/
Why is there a separate package duplicating rexml from src:ruby2.7 in bullseye?
Cheers,
Moritz