Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
05b53e85 by Chris Lamb at 2018-11-21T09:38:02Z
Correct patch URL for CVE-2018-16471 (ruby-rack) for the 2.x branch.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7515,7 +7515,7 @@ CVE-2018-16471 (There is a possible XSS vulnerability in
Rack before 2.0.6 and 1
- ruby-rack <unfixed> (bug #913005)
[stretch] - ruby-rack <no-dsa> (Minor issue)
NOTE: Fixed by:
https://github.com/rack/rack/commit/e5d58031b766e49687157b45edab1b8457d972bd
(master)
- NOTE: Fixed by:
https://github.com/rack/rack/commit/8376dd11e6526a53432ee59b7a5d092bda9fc901
(2.0.6)
+ NOTE: Fixed by:
https://github.com/rack/rack/commit/313dd6a05a5924ed6c82072299c53fed09e39ae7
(2.0.6)
NOTE: Fixed by:
https://github.com/rack/rack/commit/97ca63d87d88b4088fb1995b14103d4fe6a5e594
(1.6.11)
CVE-2018-16470 (There is a possible DoS vulnerability in the multipart parser
in Rack ...)
[experimental] - ruby-rack <unfixed> (bug #913003)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/05b53e850c11e6f9d0652597c261a7cb55a067fa
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/05b53e850c11e6f9d0652597c261a7cb55a067fa
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
