[Git][security-tracker-team/security-tracker][master] 5 commits: Track fixed version for CVE-2019-8324/rubygems in unstable
Salvatore Bonaccorso
carnil at debian.org
Sun Nov 29 20:02:15 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
094cfeb6 by Salvatore Bonaccorso at 2020-11-29T20:59:20+01:00
Track fixed version for CVE-2019-8324/rubygems in unstable
- - - - -
9a8fd388 by Salvatore Bonaccorso at 2020-11-29T20:59:55+01:00
Track fixed version for CVE-2019-8323/rubygems in unstable
- - - - -
a1d661eb by Salvatore Bonaccorso at 2020-11-29T21:00:33+01:00
Track fixed version for CVE-2019-8322/rubygems in unstable
- - - - -
215ca07e by Salvatore Bonaccorso at 2020-11-29T21:01:09+01:00
Track fixed version for CVE-2019-8321/rubygems in unstable
- - - - -
de61d206 by Salvatore Bonaccorso at 2020-11-29T21:01:43+01:00
Track fixed version for CVE-2019-8320/rubygems in unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -108791,7 +108791,7 @@ CVE-2019-8324 (An issue was discovered in RubyGems 2.6 and later through 3.0.2.
- ruby2.5 2.5.5-1
- ruby2.3 <removed>
- ruby2.1 <removed>
- - rubygems <unfixed>
+ - rubygems 3.2.0~rc.1-1
- jruby 9.1.17.0-3 (bug #925987)
NOTE: https://www.ruby-lang.org/en/news/2019/03/05/multiple-vulnerabilities-in-rubygems/
NOTE: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
@@ -108801,7 +108801,7 @@ CVE-2019-8323 (An issue was discovered in RubyGems 2.6 and later through 3.0.2.
- ruby2.5 2.5.5-1
- ruby2.3 <removed>
- ruby2.1 <removed>
- - rubygems <unfixed>
+ - rubygems 3.2.0~rc.1-1
- jruby 9.1.17.0-3 (bug #925987)
NOTE: https://www.ruby-lang.org/en/news/2019/03/05/multiple-vulnerabilities-in-rubygems/
NOTE: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
@@ -108811,7 +108811,7 @@ CVE-2019-8322 (An issue was discovered in RubyGems 2.6 and later through 3.0.2.
- ruby2.5 2.5.5-1
- ruby2.3 <removed>
- ruby2.1 <removed>
- - rubygems <unfixed>
+ - rubygems 3.2.0~rc.1-1
- jruby 9.1.17.0-3 (bug #925987)
NOTE: https://www.ruby-lang.org/en/news/2019/03/05/multiple-vulnerabilities-in-rubygems/
NOTE: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
@@ -108822,7 +108822,7 @@ CVE-2019-8321 (An issue was discovered in RubyGems 2.6 and later through 3.0.2.
- ruby2.3 <removed>
- ruby2.1 <removed>
[jessie] - ruby2.1 <not-affected> (Vulnerable code introduced later)
- - rubygems <unfixed>
+ - rubygems 3.2.0~rc.1-1
- jruby 9.1.17.0-3 (bug #925987)
NOTE: https://www.ruby-lang.org/en/news/2019/03/05/multiple-vulnerabilities-in-rubygems/
NOTE: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
@@ -108832,7 +108832,7 @@ CVE-2019-8320 (A Directory Traversal issue was discovered in RubyGems 2.7.6 and
- ruby2.5 2.5.5-1
- ruby2.3 <removed>
- ruby2.1 <removed>
- - rubygems <unfixed>
+ - rubygems 3.2.0~rc.1-1
- jruby 9.1.17.0-3 (bug #925987)
[jessie] - jruby <not-affected> (Vulnerable code introduced later)
NOTE: https://www.ruby-lang.org/en/news/2019/03/05/multiple-vulnerabilities-in-rubygems/
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/68c082f0465d32dd621cfc33caecebcd4200e136...de61d20649589f3d4a51d62591e1567557376583
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/68c082f0465d32dd621cfc33caecebcd4200e136...de61d20649589f3d4a51d62591e1567557376583
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201129/413b2ed6/attachment.html>
More information about the debian-security-tracker-commits
mailing list