Abhijith PA pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8c55c4aa by Abhijith PA at 2019-05-20T12:48:33Z
data/CVE/list: jruby in jessie not affected by CVE-2019-8320
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10238,6 +10238,7 @@ CVE-2019-8320 [Delete directory using symlink when
decompressing tar]
- ruby2.1 <removed>
- rubygems <removed>
- jruby <unfixed> (bug #925987)
+ [jessie] - jruby <not-affected> (Vulnerable code introduced later)
NOTE:
https://www.ruby-lang.org/en/news/2019/03/05/multiple-vulnerabilities-in-rubygems/
NOTE:
https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
NOTE:
https://github.com/rubygems/rubygems/commit/56c0bbb69e4506bda7ef7f447dfec5db820df20b
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8c55c4aa9cc075d682aafb66dbc103229b375419
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8c55c4aa9cc075d682aafb66dbc103229b375419
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
