[Secure-testing-commits] r37710 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Nov 15 07:16:46 UTC 2015
Author: carnil
Date: 2015-11-15 07:16:46 +0000 (Sun, 15 Nov 2015)
New Revision: 37710
Modified:
data/CVE/list
Log:
Add fixed version for #787951
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-15 06:43:05 UTC (rev 37709)
+++ data/CVE/list 2015-11-15 07:16:46 UTC (rev 37710)
@@ -10376,7 +10376,7 @@
NOTE: https://github.com/mongoid/moped/commit/dd5a7c14b5d2e466f7875d079af71ad19774609b#diff-3b93602f64c2fe46d38efd9f73ef5358R24
CVE-2015-4410 [ruby-bson: DoS and possible injection]
RESERVED
- - ruby-bson <unfixed> (bug #787951)
+ - ruby-bson 1.10.0-2 (bug #787951)
[jessie] - ruby-bson <no-dsa> (Minor issue)
NOTE: "original" implementation of legal? using ^[0-9a-f]{24}$ regular expression
NOTE: Fix: https://github.com/mongodb/mongo-ruby-driver/commit/bb544c2f6fd62940f04ddc1abeeaa3f23c1a9ade (1.x-stable)
More information about the Secure-testing-commits
mailing list