[Git][security-tracker-team/security-tracker][master] more rails issues, rails fixed

Thu Jun 4 08:12:12 BST 2020


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d099a054 by Moritz Muehlenhoff at 2020-06-04T09:11:47+02:00
more rails issues, rails fixed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -14827,20 +14827,24 @@ CVE-2020-8168 (We have recently released new version of AirMax AirOS firmware v6
 	NOT-FOR-US: AirMax AirOS
 CVE-2020-8167
 	RESERVED
+	- rails 2:5.2.4.3+dfsg-1
 CVE-2020-8166
 	RESERVED
+	- rails 2:5.2.4.3+dfsg-1
 CVE-2020-8165
 	RESERVED
+	- rails 2:5.2.4.3+dfsg-1
 CVE-2020-8164 [possible strong parameters bypass]
 	RESERVED
 	[experimental] - rails 2:6.0.3.1+dfsg-1
-	- rails <unfixed>
+	- rails 2:5.2.4.3+dfsg-1
 	NOTE: https://weblog.rubyonrails.org/2020/5/18/Rails-5-2-4-3-and-6-0-3-1-have-been-released
 	NOTE: https://github.com/rails/rails/commit/7a3ee4fea90b7555f8d09c6c05c15fe7ab5a06ec
 CVE-2020-8163
 	RESERVED
 CVE-2020-8162
 	RESERVED
+	- rails 2:5.2.4.3+dfsg-1
 CVE-2020-8161 [Directory traversal in Rack::Directory]
 	RESERVED
 	{DLA-2216-1}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d099a054000a9136e57b7256eb8ebea020585aa2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d099a054000a9136e57b7256eb8ebea020585aa2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200604/06a23f9d/attachment.html>
