[Secure-testing-commits] r48225 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 20 14:34:44 UTC 2017
Author: carnil
Date: 2017-01-20 14:34:44 +0000 (Fri, 20 Jan 2017)
New Revision: 48225
Modified:
data/CVE/list
Log:
Mark CVE-2016-2339/ruby2.1 as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-20 12:20:05 UTC (rev 48224)
+++ data/CVE/list 2017-01-20 14:34:44 UTC (rev 48225)
@@ -36632,6 +36632,7 @@
CVE-2016-2339 (An exploitable heap overflow vulnerability exists in the ...)
- ruby2.3 2.3.0-1
- ruby2.1 <removed> (bug #851161)
+ [jessie] - ruby2.1 <no-dsa> (Minor issue)
NOTE: http://www.talosintelligence.com/reports/TALOS-2016-0034/
NOTE: Fixed by: https://github.com/ruby/ruby/commit/bcc2421b4938fc1d9f5f3fb6ef2320571b27af42
CVE-2016-2338
More information about the Secure-testing-commits
mailing list