[Git][security-tracker-team/security-tracker][master] Isolate upstream commits for CVE-2022-31163/ruby-tzinfo
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Jul 31 14:00:33 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
55a11e8c by Salvatore Bonaccorso at 2022-07-31T15:00:00+02:00
Isolate upstream commits for CVE-2022-31163/ruby-tzinfo
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15148,7 +15148,8 @@ CVE-2022-31164 (Tovy is a a staff management system for Roblox groups. A vulnera
CVE-2022-31163 (TZInfo is a Ruby library that provides access to time zone data and al ...)
- ruby-tzinfo 2.0.4-2
NOTE: https://github.com/tzinfo/tzinfo/security/advisories/GHSA-5cm2-9h8c-rvfx
- NOTE: https://github.com/tzinfo/tzinfo/commit/b98c32efd61289fe6f00a50ab8061e95962ea983
+ NOTE: https://github.com/tzinfo/tzinfo/commit/9eddbb5c0e682736f61d0dd803b6031a5db9eadf (v0.3.61)
+ NOTE: https://github.com/tzinfo/tzinfo/commit/9905ca93abf7bf3e387bd592406e403cd18334c7 (v1.2.10)
CVE-2022-31162 (Slack Morphism is an async client library for Rust. Prior to 0.41.0, i ...)
NOT-FOR-US: Slack Morphism
CVE-2022-31161 (Roxy-WI is a Web interface for managing HAProxy, Nginx and Keepalived ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/55a11e8cde07dbfad535e772679ada157f028074
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/55a11e8cde07dbfad535e772679ada157f028074
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220731/c34dba8d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list