[Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2026-33306/ruby-bcrypt
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Mar 22 19:59:27 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8a2dd284 by Salvatore Bonaccorso at 2026-03-22T20:53:26+01:00
Add CVE-2026-33306/ruby-bcrypt
- - - - -
8767c036 by Salvatore Bonaccorso at 2026-03-22T20:57:06+01:00
Track fixed version for CVE-2026-33306/ruby-bcrypt
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2026-33306
+ - ruby-bcrypt 3.1.22-1
+ NOTE: https://github.com/bcrypt-ruby/bcrypt-ruby/security/advisories/GHSA-f27w-vcwj-c954
+ NOTE: Fixed by: https://github.com/bcrypt-ruby/bcrypt-ruby/commit/5faa2748331d3edc661c127ef2fbb3afcb6b02a4 (v3.1.22)
CVE-2026-23538
NOT-FOR-US: Feast
CVE-2026-23537
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/755f71b7e1b0255d34f92d668864a1bf212a24e0...8767c0367d49f3fee668608d92f5fb67cff7e47f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/755f71b7e1b0255d34f92d668864a1bf212a24e0...8767c0367d49f3fee668608d92f5fb67cff7e47f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260322/91afd686/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list