Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8941b840 by Salvatore Bonaccorso at 2020-03-05T05:22:10+01:00
Add fixed version for CVE-2020-524{7,9}/puma via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10689,13 +10689,13 @@ CVE-2020-5251 (In parser-server before version 4.1.0,
you can fetch all the user
CVE-2020-5250
RESERVED
CVE-2020-5249 (In Puma (RubyGem) before 4.3.3 and 3.12.4, if an application
using Pum ...)
- - puma <unfixed> (bug #953122)
+ - puma 3.12.4-1 (bug #953122)
NOTE:
https://github.com/puma/puma/security/advisories/GHSA-33vf-4xgg-9r58
NOTE:
https://github.com/puma/puma/commit/c22712fc93284a45a93f9ad7023888f3a65524f3
CVE-2020-5248
RESERVED
CVE-2020-5247 (In Puma (RubyGem) before 4.3.2 and before 3.12.3, if an
application us ...)
- - puma <unfixed> (bug #952766)
+ - puma 3.12.4-1 (bug #952766)
NOTE:
https://github.com/puma/puma/security/advisories/GHSA-84j7-475p-hp8v
NOTE:
https://github.com/puma/puma/commit/1b17e85a06183cd169b41ca719928c26d44a6e03
(3.12.3)
NOTE:
https://github.com/puma/puma/commit/694feafcd4fdcea786a0730701dad933f7547bea
(4.3.2)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8941b840b65cf78fb45d65f8c5e7a7da08e292f9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8941b840b65cf78fb45d65f8c5e7a7da08e292f9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
