[Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2020-8164/rails

Wed Jun 3 07:12:16 BST 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
eef74daf by Salvatore Bonaccorso at 2020-06-03T08:07:11+02:00
Reference upstream commit for CVE-2020-8164/rails

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -14700,6 +14700,7 @@ CVE-2020-8164 [possible strong parameters bypass]
 	[experimental] - rails 2:6.0.3.1+dfsg-1
 	- rails <unfixed>
 	NOTE: https://weblog.rubyonrails.org/2020/5/18/Rails-5-2-4-3-and-6-0-3-1-have-been-released
+	NOTE: https://github.com/rails/rails/commit/7a3ee4fea90b7555f8d09c6c05c15fe7ab5a06ec
 CVE-2020-8163
 	RESERVED
 CVE-2020-8162



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eef74daf475bc19df6c8f47a2474adc29c7cae0c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eef74daf475bc19df6c8f47a2474adc29c7cae0c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200603/519adfff/attachment.html>
