[Git][security-tracker-team/security-tracker][master] Add CVE-2025-25184/ruby-rack
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Feb 13 19:49:31 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
927be557 by Salvatore Bonaccorso at 2025-02-13T20:49:00+01:00
Add CVE-2025-25184/ruby-rack
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -362,7 +362,9 @@ CVE-2025-25199 (go-crypto-winnative Go crypto backend for Windows using Cryptogr
CVE-2025-25198 (mailcow: dockerized is an open source groupware/email suite based on d ...)
NOT-FOR-US: mailcow
CVE-2025-25184 (Rack provides an interface for developing web applications in Ruby. Pr ...)
- TODO: check
+ - ruby-rack <unfixed>
+ NOTE: https://github.com/rack/rack/security/advisories/GHSA-7g2v-jj9q-g3rg
+ NOTE: https://github.com/rack/rack/commit/074ae244430cda05c27ca91cda699709cfb3ad8e
CVE-2025-25182 (Stroom is a data processing, storage and analysis platform. A vulnerab ...)
NOT-FOR-US: Stroom
CVE-2025-1244 (A flaw was found in the Emacs text editor. Improper handling of custom ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/927be55753395768af0ba87a2415cd8ff7ae7e42
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/927be55753395768af0ba87a2415cd8ff7ae7e42
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250213/b39156fc/attachment.htm>
More information about the debian-security-tracker-commits
mailing list