[Secure-testing-commits] r52606 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jun 16 07:01:21 UTC 2017
Author: carnil
Date: 2017-06-16 07:01:21 +0000 (Fri, 16 Jun 2017)
New Revision: 52606
Modified:
data/CVE/list
Log:
Add CVE-2015-9096/ruby
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-16 05:51:07 UTC (rev 52605)
+++ data/CVE/list 2017-06-16 07:01:21 UTC (rev 52606)
@@ -363,6 +363,12 @@
CVE-2017-9552 (A design flaw in authentication in Synology Photo Station 6.0-2528 ...)
NOT-FOR-US: Synology Photo Station
CVE-2015-9096 (Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection ...)
+ - ruby2.3 <unfixed>
+ - ruby2.1 <removed>
+ - ruby1.9.1 <removed>
+ - ruby1.8 <removed>
+ NOTE: https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee
+ NOTE: https://github.com/rubysec/ruby-advisory-db/issues/215
TODO: check
CVE-2017-9551
RESERVED
More information about the Secure-testing-commits
mailing list