[Git][security-tracker-team/security-tracker][master] Add Debian bug references for ruby issues

Thu Apr 21 09:59:34 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7b308c79 by Salvatore Bonaccorso at 2022-04-21T10:59:08+02:00
Add Debian bug references for ruby issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2023,8 +2023,8 @@ CVE-2022-28740
 	RESERVED
 CVE-2022-28739 [Buffer overrun in String-to-Float conversion]
 	RESERVED
-	- ruby3.0 <unfixed>
-	- ruby2.7 <unfixed>
+	- ruby3.0 <unfixed> (bug #1009956)
+	- ruby2.7 <unfixed> (bug #1009957)
 	- ruby2.5 <removed>
 	- ruby2.3 <removed>
 	NOTE: https://github.com/ruby/ruby/commit/69f9992ed41920389d4185141a14f02f89a4d306 (v2_6_10)
@@ -2034,7 +2034,7 @@ CVE-2022-28739 [Buffer overrun in String-to-Float conversion]
 	NOTE: https://www.ruby-lang.org/en/news/2022/04/12/buffer-overrun-in-string-to-float-cve-2022-28739/
 CVE-2022-28738 [Double free in Regexp compilation]
 	RESERVED
-	- ruby3.0 <unfixed>
+	- ruby3.0 <unfixed> (bug #1009958)
 	- ruby2.7 <not-affected> (Vulnerable code not present)
 	- ruby2.5 <not-affected> (Vulnerable code not present)
 	- ruby2.3 <not-affected> (Vulnerable code not present)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7b308c799d4e7749cce7ce6941cfdd7f8e5482ba

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7b308c799d4e7749cce7ce6941cfdd7f8e5482ba
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220421/06d868a1/attachment.htm>
