[DRE-maint] Bug#988214: CVE-2021-22885 CVE-2021-22902 CVE-2021-22904
Moritz Muehlenhoff
jmm at debian.org
Fri May 7 20:35:30 BST 2021
Package: rails
Severity: grave
Tags: security
X-Debbugs-Cc: Debian Security Team <team at security.debian.org>
CVE-2021-22904:
https://github.com/rails/rails/commit/d861fa8ade353390c4419b53a6c6b41f3005b1f2 (v6.0.3.7)
CVE-2021-22902:
Fixed by: https://github.com/rails/rails/commit/446afbd15360a347c923ca775b21a286dcb5297a (v6.0.3.7)
CVE-2021-22885:
https://github.com/rails/rails/commit/f202249bdd701f908a57d733e633d366a982f8ce (v6.0.3.7)
Cheers,
Moritz
More information about the Pkg-ruby-extras-maintainers
mailing list