[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-21949/ruby-xmlhash via unstable

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Mar 18 14:58:40 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cb7e2b35 by Salvatore Bonaccorso at 2023-03-18T15:57:07+01:00
Track fixed version for CVE-2022-21949/ruby-xmlhash via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -101484,7 +101484,7 @@ CVE-2022-21951 (A Missing Encryption of Sensitive Data vulnerability in SUSE Ran
 CVE-2022-21950 (A Improper Access Control vulnerability in the systemd service of cana ...)
 	NOT-FOR-US: SuSE
 CVE-2022-21949 (A Improper Restriction of XML External Entity Reference vulnerability  ...)
-	- ruby-xmlhash <unfixed> (bug #1010667)
+	- ruby-xmlhash 1.3.6-3.1 (bug #1010667)
 	[bullseye] - ruby-xmlhash <no-dsa> (Minor issue)
 	[buster] - ruby-xmlhash <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1197928



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb7e2b3576eebb1bb783e5987028acea6087fc11

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb7e2b3576eebb1bb783e5987028acea6087fc11
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230318/c97fda02/attachment.htm>


More information about the debian-security-tracker-commits mailing list