diff options
| author | Sylvain Beucler <beuc@beuc.net> | 2021-06-10 18:33:03 +0200 |
|---|---|---|
| committer | Sylvain Beucler <beuc@beuc.net> | 2021-06-10 18:33:03 +0200 |
| commit | 19ac6194959bb96546a533faeaf868bb8a674d6d (patch) | |
| tree | a4b6220f0d50331968d09e16316a18d00eec17c0 /data/dla-needed.txt | |
| parent | 303b251d0489138a6b6de793bf7a0459053b2109 (diff) | |
dla: ruby-doorkeeper: drop notes on CVE-2020-10187 which was later marked not-affected
Diffstat (limited to 'data/dla-needed.txt')
| -rw-r--r-- | data/dla-needed.txt | 6 |
1 files changed, 0 insertions, 6 deletions
diff --git a/data/dla-needed.txt b/data/dla-needed.txt index 16012af8da..f881a3786e 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -77,12 +77,6 @@ ruby-actionpack-page-caching (Markus Koschany) NOTE: 20200819: URI.parser.unescap-ing it. Requires more investigation. (lamby) -- ruby-doorkeeper (Sylvain Beucler) - NOTE: 20200831: it's a breaking change, I'd rather not want to issue a DLA for this. (utkarsh) - NOTE: 20200831: in case it's really DLA worthy, I'd be very careful with this update. (utkarsh) - NOTE: 20200831: more investigation needed. (utkarsh) - NOTE: 20201009: on another note, it needs more investigation if this version is affected in - NOTE: 20201009: the first place or not. (utkarsh) - NOTE: 20201215: includes plaintext secret is not part of source code for stretch but there may be other ways to trigger this (ola) -- ruby-kaminari (Markus Koschany) NOTE: 20200819: The source in Debian (at least in LTS) appears to have a different lineage to |