[Secure-testing-commits] r19392 - data/CVE

Henri Salo fgeek-guest at alioth.debian.org
Thu May 31 20:02:53 UTC 2012


Author: fgeek-guest
Date: 2012-05-31 20:02:53 +0000 (Thu, 31 May 2012)
New Revision: 19392

Modified:
   data/CVE/list
Log:
New ruby on rails issue CVE-2012-2661.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-05-31 19:09:54 UTC (rev 19391)
+++ data/CVE/list	2012-05-31 20:02:53 UTC (rev 19392)
@@ -603,8 +603,11 @@
 	RESERVED
 CVE-2012-2662
 	RESERVED
-CVE-2012-2661
+CVE-2012-2661 (SQL Injection Vulnerability in Ruby on Rails)
 	RESERVED
+	- rails
+	NOTE: Versions Affected: 3.0.0 and ALL later versions. Not affected: 2.3.14. Fixed Versions: 3.2.4, 3.1.5, 3.0.13
+	NOTE: http://seclists.org/oss-sec/2012/q2/448
 CVE-2012-2660
 	RESERVED
 CVE-2012-2659




More information about the Secure-testing-commits mailing list