[Git][security-tracker-team/security-tracker][master] update fixed version for yard, .35 was incomplete
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Mar 5 08:45:00 GMT 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5ba607a6 by Moritz Muehlenhoff at 2024-03-05T09:44:23+01:00
update fixed version for yard, .35 was incomplete
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1654,7 +1654,7 @@ CVE-2024-27515 (Osclass 5.1.2 is vulnerable to SQL Injection.)
NOT-FOR-US: Osclass
CVE-2024-27285 (YARD is a Ruby Documentation tool. The "frames.html" file within the Y ...)
{DSA-5635-1}
- - yard 0.9.35-1 (bug #1065118)
+ - yard 0.9.36-1 (bug #1065118)
NOTE: https://github.com/lsegal/yard/security/advisories/GHSA-8mq4-9jjh-9xrc
NOTE: Fixed by: https://github.com/lsegal/yard/commit/d78fc393d603c4fc35975969296ed381146a29d4 (v0.9.35)
NOTE: Followup: https://github.com/lsegal/yard/commit/c88406e4b78f8dd4ba38c79eea0bcec716dbbef8 (v0.9.36)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ba607a63d21f51060530d86e08745bfddca52b8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ba607a63d21f51060530d86e08745bfddca52b8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240305/864eb2c4/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list