[Secure-testing-commits] r21446 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Feb 27 09:14:03 UTC 2013
Author: jmm
Date: 2013-02-27 09:14:03 +0000 (Wed, 27 Feb 2013)
New Revision: 21446
Modified:
data/CVE/list
Log:
ruby-rack fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-02-27 08:14:09 UTC (rev 21445)
+++ data/CVE/list 2013-02-27 09:14:03 UTC (rev 21446)
@@ -4865,12 +4865,12 @@
RESERVED
NOT-FOR-US: Cumin
CVE-2013-0263 (Rack::Session::Cookie in Rack 1.5.x before 1.5.2, 1.4.x before 1.4.5, ...)
- - ruby-rack <unfixed> (bug #700226)
+ - ruby-rack 1.4.1-2.1 (bug #700226)
- librack-ruby <removed> (bug #700226)
NOTE: https://bugzilla.novell.com/show_bug.cgi?id=802794
NOTE: Patches in git, commits 0cd7e9aa397f8ebb3b8481d67dbac8b4863a7f07 and 9a81b961457805f6d1a5c275d053068440421e11
CVE-2013-0262 (rack/file.rb (Rack::File) in Rack 1.5.x before 1.5.2 and 1.4.x before ...)
- - ruby-rack <unfixed> (bug #700173)
+ - ruby-rack 1.4.1-2.1 (bug #700173)
- librack-ruby <not-affected> (Introduced in 1.4.0, see #700226)
NOTE: Patches in git, commit 6f237e4c9fab649d3750482514f0fde76c56ab30
CVE-2013-0261
@@ -5138,11 +5138,11 @@
RESERVED
CVE-2013-0184 [Rack::Auth::AbstractRequest DoS]
RESERVED
- - ruby-rack <unfixed> (bug #698440)
+ - ruby-rack 1.4.1-2.1 (bug #698440)
- librack-ruby <removed>
CVE-2013-0183 [receiving excessively long lines triggers out-of-memory error]
RESERVED
- - ruby-rack <unfixed> (bug #698440)
+ - ruby-rack 1.4.1-2.1 (bug #698440)
- librack-ruby <removed>
CVE-2013-0182
RESERVED
@@ -5841,7 +5841,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2013/01/11/5
CVE-2012-6109 [parsing Content-Disposition header DoS]
RESERVED
- - ruby-rack <unfixed> (bug #698440)
+ - ruby-rack 1.4.1-2.1 (bug #698440)
- librack-ruby <removed>
CVE-2012-6108 [default permissions for /var/log/hp are too open]
RESERVED
More information about the Secure-testing-commits
mailing list