Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: c5e41958 by Salvatore Bonaccorso at 2020-05-25T12:12:12+02:00 Add fixed version for CVE-2020-10187/ruby-doorkeeper via unstable - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -9141,7 +9141,7 @@ CVE-2019-20503 (usrsctp before 2019-12-20 has out-of-bounds reads in sctp_load_a NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1992 NOTE: https://github.com/sctplab/usrsctp/commit/790a7a2555aefb392a5a69923f1e9d17b4968467 CVE-2020-10187 (Doorkeeper version 5.0.0 and later contains an information disclosure ...) - - ruby-doorkeeper <unfixed> (bug #959903) + - ruby-doorkeeper 5.0.3-1 (bug #959903) NOTE: https://github.com/doorkeeper-gem/doorkeeper/commit/25d038022c2fcad45af5b73f9d003cf38ff491f6 NOTE: https://github.com/doorkeeper-gem/doorkeeper/security/advisories/GHSA-j7vx-8mqj-cqp9 CVE-2020-10186 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c5e4195804c1c9e5c3a7112b3452cb898c6bb75a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c5e4195804c1c9e5c3a7112b3452cb898c6bb75a You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits