[Git][security-tracker-team/security-tracker][master] Add CVE-2015-20108/ruby-saml
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon May 29 16:09:19 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8824e9d6 by Salvatore Bonaccorso at 2023-05-29T17:08:39+02:00
Add CVE-2015-20108/ruby-saml
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -77,7 +77,9 @@ CVE-2023-2926 (A vulnerability was found in SeaCMS 11.6 and classified as proble
CVE-2023-2925 (A vulnerability, which was classified as problematic, was found in Web ...)
NOT-FOR-US: Webkul krayin crm
CVE-2015-20108 (xml_security.rb in the ruby-saml gem before 1.0.0 for Ruby allows XPat ...)
- TODO: check
+ - ruby-saml 1.0.0-1
+ NOTE: https://github.com/SAML-Toolkits/ruby-saml/commit/9853651b96b99653ea8627d757d46bfe62ab6448 (v1.0.0)
+ NOTE: https://github.com/SAML-Toolkits/ruby-saml/pull/225
CVE-2023-33199 (Rekor's goals are to provide an immutable tamper resistant ledger of m ...)
- rekor <itp> (bug #990249)
CVE-2023-33196 (Craft is a CMS for creating custom digital experiences. Cross site scr ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8824e9d6acd8a0019de957124d5c5cf4a4cab6b0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8824e9d6acd8a0019de957124d5c5cf4a4cab6b0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230529/5a2daa8d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list