[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2016-2339: add two additional and required fixed-by refs
Santiago R.R.
santiago at debian.org
Fri Apr 13 14:02:13 BST 2018
Santiago R.R. pushed to branch master at Debian Security Tracker / security-tracker
Commits:
42b3a4d6 by Santiago R.R at 2018-04-13T15:01:23+02:00
CVE-2016-2339: add two additional and required fixed-by refs
Signed-off-by: Santiago R.R <santiagorr at riseup.net>
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -101069,6 +101069,8 @@ CVE-2016-2339 (An exploitable heap overflow vulnerability exists in the ...)
[jessie] - ruby2.1 <no-dsa> (Minor issue)
NOTE: http://www.talosintelligence.com/reports/TALOS-2016-0034/
NOTE: Fixed by: https://github.com/ruby/ruby/commit/bcc2421b4938fc1d9f5f3fb6ef2320571b27af42
+ NOTE: Fixed by: https://github.com/ruby/ruby/commit/de577357e80fa15f5cf13a81aa3decc783ea929e
+ NOTE: Fixed by: https://github.com/ruby/ruby/commit/4977af3c3d54d27167bfc237f1b2802c40bddc10
CVE-2016-2338
RESERVED
CVE-2016-2337 (Type confusion exists in _cancel_eval Ruby's TclTkIp class method. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/42b3a4d6cf7b3ea08a10f30e97707f55b51db1ff
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/42b3a4d6cf7b3ea08a10f30e97707f55b51db1ff
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180413/75020ec9/attachment.html>
More information about the debian-security-tracker-commits
mailing list