[Git][security-tracker-team/security-tracker][master] Add CVE-2024-43380/ruby-fugit

Wed Aug 21 08:20:43 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
db32d7b4 by Salvatore Bonaccorso at 2024-08-21T09:20:14+02:00
Add CVE-2024-43380/ruby-fugit

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -408,7 +408,15 @@ CVE-2024-43400 (XWiki Platform is a generic wiki platform offering runtime servi
 CVE-2024-43399 (Mobile Security Framework (MobSF) is a pen-testing, malware analysis a ...)
 	NOT-FOR-US: Mobile Security Framework (MobSF)
 CVE-2024-43380 (fugit contains time tools for flor and the floraison group. The fugit  ...)
-	TODO: check
+	- ruby-fugit <unfixed>
+	NOTE: https://github.com/floraison/fugit/security/advisories/GHSA-2m96-52r3-2f3g
+	NOTE: https://github.com/floraison/fugit/issues/104
+	NOTE: https://github.com/floraison/fugit/commit/6a7527497c0bb9196efe503e3d9b5271128a8ee1 (v1.11.1)
+	NOTE: https://github.com/floraison/fugit/commit/2a11805444d9ed036ee8570b88cd2b6df450ee84 (v1.11.1)
+	NOTE: https://github.com/floraison/fugit/commit/a9a262873450eaf5671747f846a6ec1e5f7d87c1 (v1.11.1)
+	NOTE: https://github.com/floraison/fugit/commit/025ad7bb76590d3360750d5617b235a23908e5bb (v1.11.1)
+	NOTE: https://github.com/floraison/fugit/commit/767ef550281bcdc8782233840f98cf8487340476 (v1.11.1)
+	NOTE: https://github.com/floraison/fugit/commit/ad2c1c9c737213d585fff0b51c927d178b2c05a5 (v1.11.1)
 CVE-2024-43379 (TruffleHog is a secrets scanning tool. Prior to v3.81.9, this vulnerab ...)
 	NOT-FOR-US: TruffleHog
 CVE-2024-43372



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db32d7b46989417478963cbf04f3ea128cddab0c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db32d7b46989417478963cbf04f3ea128cddab0c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240821/154f4d33/attachment-0001.htm>
