Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker
Commits: 6228ca3b by Abhijith PA at 2021-04-07T15:12:04+05:30 Package has no reverse depends and very unlikely someone use this packaged gem in rails. And activerecord-session_store only present in stretch suite. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920816 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -5028,6 +5028,7 @@ CVE-2020-36255 (An issue was discovered in IdentityModel (aka ScottBrady.Identit NOT-FOR-US: ScottBrady.IdentityModel CVE-2019-25025 (The activerecord-session_store (aka Active Record Session Store) compo ...) - ruby-activerecord-session-store <removed> + [stretch] - ruby-activerecord-session-store <ignored> (No reverse dependencies) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1935724 NOTE: https://github.com/rails/activerecord-session_store/pull/151 CVE-2021-27955 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6228ca3b86631280837cb1601bb368e316fc4307 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6228ca3b86631280837cb1601bb368e316fc4307 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
