[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Triage results.
Ola Lundqvist
opal at debian.org
Sun Apr 1 19:12:41 BST 2018
Ola Lundqvist pushed to branch master at Debian Security Tracker / security-tracker
Commits:
549e7405 by Ola Lundqvist at 2018-04-01T20:12:03+02:00
Triage results.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -4923,6 +4923,7 @@ CVE-2018-1000079 (RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3
- ruby1.9.1 <removed>
- rubygems <removed>
- jruby <unfixed>
+ [wheezy] - jruby <not-affected> (Vulnerable code not present)
NOTE: https://github.com/rubygems/rubygems/commit/f83f911e19e27cbac1ccce7471d96642241dd759
NOTE: https://github.com/rubygems/rubygems/commit/666ef793cad42eed96f7aee1cdf77865db921099
NOTE: https://www.ruby-lang.org/en/news/2018/02/17/multiple-vulnerabilities-in-rubygems/
@@ -4964,6 +4965,7 @@ CVE-2018-1000075 (RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3
- ruby1.9.1 <removed>
- rubygems <removed>
- jruby <unfixed>
+ [wheezy] - jruby <ignored> (Minor issue)
NOTE: https://github.com/rubygems/rubygems/commit/92e98bf8f810bd812f919120d4832df51bc25d83
NOTE: https://www.ruby-lang.org/en/news/2018/02/17/multiple-vulnerabilities-in-rubygems/
CVE-2018-1000074 (RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: ...)
@@ -4982,6 +4984,7 @@ CVE-2018-1000073 (RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3
- ruby1.9.1 <removed>
- rubygems <removed>
- jruby <unfixed>
+ [wheezy] - jruby <not-affected> (Vulnerable code not present)
NOTE: https://github.com/rubygems/rubygems/commit/1b931fc03b819b9a0214be3eaca844ef534175e2
NOTE: https://www.ruby-lang.org/en/news/2018/02/17/multiple-vulnerabilities-in-rubygems/
CVE-2018-1000072 (iRedMail version prior to commit f04b8ef contains a Insecure ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/549e74058ba1bd40172d3f93a742675c794cb7b7
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/549e74058ba1bd40172d3f93a742675c794cb7b7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180401/d80af155/attachment.html>
More information about the debian-security-tracker-commits
mailing list