[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-44528/rails

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f879a1c6 by Salvatore Bonaccorso at 2022-06-01T22:55:26+02:00
Track fixed version for CVE-2021-44528/rails

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -35657,7 +35657,7 @@ CVE-2021-44530 (An injection vulnerability exists in a third-party library used
 CVE-2021-44529 (A code injection vulnerability in the Ivanti EPM Cloud Services Applia ...)
 	NOT-FOR-US: Ivanti
 CVE-2021-44528 (A open redirect vulnerability exists in Action Pack >= 6.0.0 that c ...)
-	- rails <unfixed> (bug #1001817)
+	- rails 2:6.1.4.6+dfsg-1 (bug #1001817)
 	[buster] - rails <not-affected> (Vulnerable code introduced later)
 	[stretch] - rails <not-affected> (Vulnerable code introduced later)
 	NOTE: https://www.openwall.com/lists/oss-security/2021/12/14/5



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f879a1c66ceeb0677552cf1c90c3224fbe133b51

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f879a1c66ceeb0677552cf1c90c3224fbe133b51
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220601/c65cc2f8/attachment.htm>