Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e1f5f289 by Salvatore Bonaccorso at 2018-07-16T06:31:04+02:00
Add commit reference for CVE-2016-10522
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -42062,6 +42062,7 @@ CVE-2016-10523 (MQTT before 3.4.6 and 4.0.x before
4.0.5 allows specifically cra
NOTE: https://nodesecurity.io/advisories/75
CVE-2016-10522 (rails_admin ruby gem <v1.1.1 is vulnerable to cross-site
request ...)
- ruby-rails-admin <unfixed> (bug #903855)
+ NOTE:
https://github.com/sferik/rails_admin/commit/b13e879eb93b661204e9fb5e55f7afa4f397537a
CVE-2016-10521 (jshamcrest is vulnerable to regular expression denial of
service ...)
NOT-FOR-US: jshamcrest
CVE-2016-10520 (jadedown is vulnerable to regular expression denial of service
(ReDoS) ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/e1f5f2898c68473ad69ff4315ce52ccf88ca10fb
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/e1f5f2898c68473ad69ff4315ce52ccf88ca10fb
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
