[Git][security-tracker-team/security-tracker][master] Track fixed version for rails issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Sep 16 06:21:26 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
afbf3373 by Salvatore Bonaccorso at 2025-09-16T07:20:48+02:00
Track fixed version for rails issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
CVE-2025-24293
- - rails <unfixed>
+ - rails 2:7.2.2.2+dfsg-1
NOTE: https://github.com/rails/rails/security/advisories/GHSA-r4mg-4433-c7g3
CVE-2025-9826 (Stored cross-site scripting vulnerability in M-Files Hubshare before v ...)
NOT-FOR-US: M-Files
@@ -10822,7 +10822,7 @@ CVE-2025-55196 (External Secrets Operator is a Kubernetes operator that integrat
CVE-2025-55194 (Part-DB is an open source inventory management system for electronic c ...)
NOT-FOR-US: Part-DB
CVE-2025-55193 (Active Record connects classes to relational database tables. Prior to ...)
- - rails <unfixed> (bug #1111106)
+ - rails 2:7.2.2.2+dfsg-1 (bug #1111106)
[trixie] - rails <no-dsa> (Minor issue)
[bookworm] - rails <no-dsa> (Minor issue)
NOTE: https://github.com/rails/rails/security/advisories/GHSA-76r7-hhxj-r776
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/afbf337370278d3a84c7a248f8611b8c8d7797d6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/afbf337370278d3a84c7a248f8611b8c8d7797d6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250916/c7207bfd/attachment.htm>
More information about the debian-security-tracker-commits
mailing list