[Git][security-tracker-team/security-tracker][master] CVE-2018-1000544,ruby-zip: Fixed in unstable
Markus Koschany
apo at debian.org
Wed Aug 15 14:27:11 BST 2018
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5c049dea by Markus Koschany at 2018-08-15T13:26:33Z
CVE-2018-1000544,ruby-zip: Fixed in unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -6403,7 +6403,7 @@ CVE-2018-1000546 (Triplea version <= 1.9.0.0.10291 contains a XML External En
CVE-2018-1000545
REJECTED
CVE-2018-1000544 (rubyzip gem rubyzip version 1.2.1 and earlier contains a Directory ...)
- - ruby-zip <unfixed> (bug #902720)
+ - ruby-zip 1.2.1-1.1 (bug #902720)
NOTE: https://github.com/rubyzip/rubyzip/issues/369
CVE-2018-1000543 (Akiee version 0.0.3 contains a XSS leading to code execution due to ...)
NOT-FOR-US: Akiee
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5c049dea3be648c407b561433ecd3c93096c6694
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5c049dea3be648c407b561433ecd3c93096c6694
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180815/5a52b77a/attachment.html>
More information about the debian-security-tracker-commits
mailing list