[Git][security-tracker-team/security-tracker][master] Add CVE-2019-16782/ruby-rack

Wed Dec 18 21:04:13 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
76512401 by Salvatore Bonaccorso at 2019-12-18T21:03:33Z
Add CVE-2019-16782/ruby-rack

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15515,7 +15515,9 @@ CVE-2019-16784
 CVE-2019-16783
 	RESERVED
 CVE-2019-16782 (There's a possible information leak / session hijack vulnerability in  ...)
-	TODO: check
+	- ruby-rack <unfixed>
+	NOTE: https://github.com/rack/rack/commit/7fecaee81f59926b6e1913511c90650e76673b38
+	NOTE: https://github.com/rack/rack/security/advisories/GHSA-hrqr-hxpp-chr3
 CVE-2019-16781
 	RESERVED
 CVE-2019-16780



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/76512401b159f25b6d4d0062605a6960411dd33c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/76512401b159f25b6d4d0062605a6960411dd33c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191218/6e98acd8/attachment.html>
