[Git][security-tracker-team/security-tracker][master] Add CVE-2025-55193/rails
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Aug 14 10:02:05 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b13c7302 by Salvatore Bonaccorso at 2025-08-14T11:01:43+02:00
Add CVE-2025-55193/rails
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -55,7 +55,11 @@ CVE-2025-55196 (External Secrets Operator is a Kubernetes operator that integrat
CVE-2025-55194 (Part-DB is an open source inventory management system for electronic c ...)
TODO: check
CVE-2025-55193 (Active Record connects classes to relational database tables. Prior to ...)
- TODO: check
+ - rails <unfixed>
+ NOTE: https://github.com/rails/rails/security/advisories/GHSA-76r7-hhxj-r776
+ NOTE: https://github.com/rails/rails/commit/3beef20013736fd52c5dcfdf061f7999ba318290 (v7.1.5.2)
+ NOTE: https://github.com/rails/rails/commit/6a944ca4805e72050a0fbb1a461534eb760d3202 (v7.2.2.2)
+ NOTE: https://github.com/rails/rails/commit/568c0bc2f1e74c65d150a84b89a080949bf9eb9b (v8.0.2.1)
CVE-2025-3414 (The Structured Content (JSON-LD) #wpsc WordPress plugin before 1.7.0 d ...)
NOT-FOR-US: WordPress plugin
CVE-2025-34154 (UnForm Server Manager versions prior to 10.1.12 expose an unauthentica ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b13c730270ae40b1b726ab8cfa73cb76c149ac62
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b13c730270ae40b1b726ab8cfa73cb76c149ac62
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250814/f158281e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list