[Git][security-tracker-team/security-tracker][master] Reserve DLA-3447-1 for ruby2.5

Tue Jun 6 21:23:43 BST 2023


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ae773d80 by Chris Lamb at 2023-06-06T13:23:27-07:00
Reserve DLA-3447-1 for ruby2.5

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[06 Jun 2023] DLA-3447-1 ruby2.5 - security update
+	{CVE-2023-28755 CVE-2023-28756}
+	[buster] - ruby2.5 2.5.5-3+deb10u5
 [05 Jun 2023] DLA-3446-1 linux-5.10 - security update
 	{CVE-2023-0386 CVE-2023-31436 CVE-2023-32233}
 	[buster] - linux-5.10 5.10.179-1~deb10u1


=====================================
data/dla-needed.txt
=====================================
@@ -172,10 +172,6 @@ ruby-rails-html-sanitizer
   NOTE: 20221231: Added by Front-Desk
   NOTE: 20230303: this cannot be fixed unless ruby-loofah is fixed with appropriate methods. (utkarsh)
 --
-ruby2.5 (Chris Lamb)
-  NOTE: 20230602: Added by Front-Desk
-  NOTE: 20230602: look at no-dsa issues (pochu)
---
 salt
   NOTE: 20220814: Added by Front-Desk
   NOTE: 20220814: I am not sure, whether it is possible to fix issues



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ae773d80f3bb6b434353d0a468275983ec9b19a6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ae773d80f3bb6b434353d0a468275983ec9b19a6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230606/c6d45a58/attachment.htm>
