[Secure-testing-commits] r25447 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 31 21:00:50 UTC 2014
Author: carnil
Date: 2014-01-31 21:00:50 +0000 (Fri, 31 Jan 2014)
New Revision: 25447
Modified:
data/CVE/list
Log:
rubygems is removed from unstable, obsolte, see #736762
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-01-31 18:36:30 UTC (rev 25446)
+++ data/CVE/list 2014-01-31 21:00:50 UTC (rev 25447)
@@ -10992,7 +10992,7 @@
CVE-2013-4364
RESERVED
CVE-2013-4363 (Algorithmic complexity vulnerability in ...)
- - rubygems <unfixed> (unimportant; bug #722361)
+ - rubygems <removed> (unimportant; bug #722361)
- libgems-ruby <removed> (unimportant; bug #722361)
NOTE: Non-issue, you trust the site providing the gem with installing arbitrary code, allowing
NOTE: it a potential elevated CPU consumption doesn't add any extra harm
@@ -11258,7 +11258,7 @@
[squeeze] - policykit-1 <no-dsa> (The update only deprecates an API and introduces a new option for pkcheck, no src package uses this API)
[wheezy] - policykit-1 <no-dsa> (The update only deprecates an API and introduces a new option for pkcheck, no src package uses this API)
CVE-2013-4287 (Algorithmic complexity vulnerability in Gem::Version::VERSION_PATTERN ...)
- - rubygems <unfixed> (unimportant; bug #722361)
+ - rubygems <removed> (unimportant; bug #722361)
- libgems-ruby <removed> (unimportant; bug #722361)
NOTE: Non-issue, you trust the site providing the gem with installing arbitrary code, allowing
NOTE: it a potential elevated CPU consumption doesn't add any extra harm
More information about the Secure-testing-commits
mailing list