subject:"Bug#1030050\: rails\: CVE\-2023\-22796 CVE\-2023\-22795 CVE\-2023\-22794 CVE\-2023\-22792 CVE\-2022\-44566"

Bug#1030050: rails: CVE-2023-22796 CVE-2023-22795 CVE-2023-22794 CVE-2023-22792 CVE-2022-44566

2023-03-25 Thread Lucas Nussbaum

On 30/01/23 at 18:59 +0100, Moritz Mühlenhoff wrote: > Source: rails > X-Debbugs-CC: t...@security.debian.org > Severity: grave > Tags: security > > Hi, > > The following vulnerabilities were published for rails. Hi, I think that a reasonable way forward on this bug would be to upgrade rails

Bug#1030050: rails: CVE-2023-22796 CVE-2023-22795 CVE-2023-22794 CVE-2023-22792 CVE-2022-44566

2023-01-30 Thread Moritz Mühlenhoff

Source: rails X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerabilities were published for rails. CVE-2023-22796[0]: https://discuss.rubyonrails.org/t/cve-2023-22796-possible-redos-based-dos-vulnerability-in-active-supports-underscore/82116