HI Francesco, On Thu, Aug 02, 2018 at 10:00:31PM +0200, Francesco Poli (wintermute) wrote: > Package: security-tracker > Severity: normal > > Hello! > > According to [DSA-4259-1], ruby2.3/2.3.3-1+deb9u3 fixes a number of > vulnerabilities, among which CVE-2017-17405, CVE-2017-17742, > CVE-2017-17790, and CVE-2018-6914. > > However, the tracker pages for [CVE-2017-17405], [CVE-2017-17742], > [CVE-2017-17790], and [CVE-2018-6914] seem to disagree. > > Is the tracker wrong? > Please update the tracker data, then.
The tracker was wrong due to the human-error in https://salsa.debian.org/security-tracker-team/security-tracker/commit/a5e9c1099e5f5a29832b60c97f3d9d0f61a538cf , which needed to be added manually due to a unrelated problem while updating tracker and relasing the DSA. Thanks for spotting! All the information should be uptodate in at most an hour. Regards, Salvatore