[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-10187/ruby-doorkeeper

Salvatore Bonaccorso carnil at debian.org
Wed May 6 20:41:12 BST 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
56944e05 by Salvatore Bonaccorso at 2020-05-06T21:40:07+02:00
Add Debian bug reference for CVE-2020-10187/ruby-doorkeeper

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7258,7 +7258,7 @@ CVE-2019-20503 (usrsctp before 2019-12-20 has out-of-bounds reads in sctp_load_a
 	NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1992
 	NOTE: https://github.com/sctplab/usrsctp/commit/790a7a2555aefb392a5a69923f1e9d17b4968467
 CVE-2020-10187 (Doorkeeper version 5.0.0 and later contains an information disclosure  ...)
-	- ruby-doorkeeper <unfixed>
+	- ruby-doorkeeper <unfixed> (bug #959903)
 	NOTE: https://github.com/doorkeeper-gem/doorkeeper/commit/25d038022c2fcad45af5b73f9d003cf38ff491f6
 	NOTE: https://github.com/doorkeeper-gem/doorkeeper/security/advisories/GHSA-j7vx-8mqj-cqp9
 CVE-2020-10186



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/56944e05a06fff635cc044645accbc03e3d7576d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/56944e05a06fff635cc044645accbc03e3d7576d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200506/52bf50ae/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list