[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-33637/ruby-faraday via unstable

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
db5f8fdd by Salvatore Bonaccorso at 2026-06-16T22:15:53+02:00
Track fixed version for CVE-2026-33637/ruby-faraday via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19085,7 +19085,7 @@ CVE-2026-33642 (Kitty is a cross-platform GPU based terminal. In versions 0.46.2
 	NOTE: Fixed by: https://github.com/kovidgoyal/kitty/commit/e9661f0f3afb4e4dbffa509adfb3df3c9780ad34 (v0.47.0)
 	NOTE: Introduced by: https://github.com/kovidgoyal/kitty/commit/340159b59141e26f25a20948fde8f9137b2df758 (v0.22.0)
 CVE-2026-33637 (Faraday is an HTTP client library abstraction layer that provides a co ...)
-	- ruby-faraday <unfixed> (bug #1137212)
+	- ruby-faraday 2.14.3-1 (bug #1137212)
 	[trixie] - ruby-faraday <not-affected> (Incomplete fix for CVE-2026-25765 not applied)
 	[bookworm] - ruby-faraday <not-affected> (Incomplete fix for CVE-2026-25765 not applied)
 	[bullseye] - ruby-faraday <not-affected> (Incomplete fix for CVE-2026-25765 not applied)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db5f8fdd79508ddb65d15f261cdac361e48a2df3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db5f8fdd79508ddb65d15f261cdac361e48a2df3
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260616/a8de7a2e/attachment.htm>