[Git][security-tracker-team/security-tracker][master] Add CVE-2021-41098/ruby-nokogiri
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Sep 28 09:17:06 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5ce0f719 by Salvatore Bonaccorso at 2021-09-28T10:16:40+02:00
Add CVE-2021-41098/ruby-nokogiri
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1430,7 +1430,9 @@ CVE-2021-41100
CVE-2021-41099
RESERVED
CVE-2021-41098 (Nokogiri is a Rubygem providing HTML, XML, SAX, and Reader parsers wit ...)
- TODO: check
+ - ruby-nokogiri <unfixed>
+ NOTE: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-2rr5-8q37-2w7h
+ NOTE: https://github.com/sparklemotion/nokogiri/commit/5bf729ff3cc84709ee3c3248c981584088bf9f6d
CVE-2021-41097 (aurelia-path is part of the Aurelia platform and contains utilities fo ...)
TODO: check
CVE-2021-41096 (Rucky is a USB HID Rubber Ducky Launch Pad for Android. Versions 2.2 a ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ce0f7197cc9d6ed83e488078307314f7e4e7541
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ce0f7197cc9d6ed83e488078307314f7e4e7541
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210928/3b5831dc/attachment.htm>
More information about the debian-security-tracker-commits
mailing list