[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-38037/rails
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Sep 1 21:47:32 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3f7adb79 by Salvatore Bonaccorso at 2023-09-01T22:46:58+02:00
Add Debian bug reference for CVE-2023-38037/rails
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -142,7 +142,7 @@ CVE-2023-40317
CVE-2023-40316
- moodle <removed>
CVE-2023-38037 [Active Support Possibly Discloses Locally Encrypted Files]
- - rails <unfixed>
+ - rails <unfixed> (bug #1051057)
NOTE: https://github.com/advisories/GHSA-cr5q-6q9f-rq6q
NOTE: https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activesupport/CVE-2023-38037.yml
NOTE: https://github.com/rails/rails/commit/a21d6edf35a60383dfa6c4da49e4b1aef5f00731 (v7.0.7.1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3f7adb79ccddafb64c1151feab598e8c4e415806
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3f7adb79ccddafb64c1151feab598e8c4e415806
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230901/6d583fab/attachment.htm>
More information about the debian-security-tracker-commits
mailing list