Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2238a897 by Salvatore Bonaccorso at 2021-09-14T22:11:11+02:00
ruby-rexml removed from unstable
- - - - -
edcc8dc9 by Salvatore Bonaccorso at 2021-09-14T22:11:11+02:00
Mark ruby-rexml as removed from everywhere
Though not actually correct, it is still present in experimental.
- - - - -
2 changed files:
- data/CVE/list
- data/packages/removed-packages
Changes:
=====================================
data/CVE/list
=====================================
@@ -28976,7 +28976,7 @@ CVE-2021-28965 (The REXML gem before 3.2.5 in Ruby
before 2.6.7, 2.7.x before 2.
- ruby2.3 <removed>
[stretch] - ruby2.3 <postponed> (Minor issue; can be fixed in next
update)
[experimental] - ruby-rexml 3.2.5-1
- - ruby-rexml <unfixed> (bug #986806)
+ - ruby-rexml <removed> (bug #986806)
NOTE:
https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/
CVE-2021-28972 (In drivers/pci/hotplug/rpadlpar_sysfs.c in the Linux kernel
through 5. ...)
{DLA-2690-1}
=====================================
data/packages/removed-packages
=====================================
@@ -813,3 +813,4 @@ openjdk-13
openjdk-14
mysql-5.7
rkt
+ruby-rexml
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a6dd87b2d314a9cc049c5a0dac5a43c1d202ff7f...edcc8dc987300ee40a34625053dcb04307cb072d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a6dd87b2d314a9cc049c5a0dac5a43c1d202ff7f...edcc8dc987300ee40a34625053dcb04307cb072d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
