[Git][security-tracker-team/security-tracker][master] Add Debian bug references for ruby-rack issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Oct 8 21:04:36 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2981cb9c by Salvatore Bonaccorso at 2025-10-08T22:04:09+02:00
Add Debian bug references for ruby-rack issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -275,19 +275,19 @@ CVE-2025-11458
- chromium 141.0.7390.65-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2025-61772 (Rack is a modular Ruby web server interface. In versions prior to 2.2. ...)
- - ruby-rack <unfixed>
+ - ruby-rack <unfixed> (bug #1117627)
NOTE: https://github.com/rack/rack/security/advisories/GHSA-wpv5-97wm-hp9c
NOTE: Fixed by: https://github.com/rack/rack/commit/589127f4ac8b5cf11cf88fb0cd116ffed4d2181e (v3.2.2)
NOTE: Fixed by: https://github.com/rack/rack/commit/e08f78c656c9394d6737c022bde087e0f33336fd (v3.1.17)
NOTE: Fixed by: https://github.com/rack/rack/commit/d869fed663b113b95a74ad53e1b5cae6ab31f29e (v2.2.19)
CVE-2025-61771 (Rack is a modular Ruby web server interface. In versions prior to 2.2. ...)
- - ruby-rack <unfixed>
+ - ruby-rack <unfixed> (bug #1117628)
NOTE: https://github.com/rack/rack/security/advisories/GHSA-w9pc-fmgc-vxvw
NOTE: Fixed by: https://github.com/rack/rack/commit/3beacfcd494ec5600c9022d561cfa2f556a524d1 (v3.2.2)
NOTE: Fixed by: https://github.com/rack/rack/commit/f224f93bb3f16e9b968493fbd7bac751e66d2fdc (v3.1.17)
NOTE: Fixed by: https://github.com/rack/rack/commit/c370dcd9405a6799763b70a83f06ae2d1aaa0e87 (v2.2.19)
CVE-2025-61770 (Rack is a modular Ruby web server interface. In versions prior to 2.2. ...)
- - ruby-rack <unfixed>
+ - ruby-rack <unfixed> (bug #1117627)
NOTE: https://github.com/rack/rack/security/advisories/GHSA-p543-xpfm-54cp
NOTE: Fixed by: https://github.com/rack/rack/commit/589127f4ac8b5cf11cf88fb0cd116ffed4d2181e (v3.2.2)
NOTE: Fixed by: https://github.com/rack/rack/commit/e08f78c656c9394d6737c022bde087e0f33336fd (v3.1.17)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2981cb9c2aca32fe71aa3df4a752e6a13f55c887
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2981cb9c2aca32fe71aa3df4a752e6a13f55c887
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251008/f1f0f225/attachment.htm>
More information about the debian-security-tracker-commits
mailing list