data/dla-needed.txt: Triage rails for buster LTS.

author: Chris Lamb <lamby@debian.org> 2022-08-17 11:35:04 -0700
committer: Chris Lamb <lamby@debian.org> 2022-08-17 11:35:04 -0700
commit: 858776b84960f39db734747508b75fba3de0a3d2 (patch)
tree: 78e1962b1f26087f69f4fc346da2d255b89fa80b /data/dla-needed.txt
parent: 1e3e82011c03652a7212b83fc1c8c0b849c006a8 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/data/dla-needed.txt b/data/dla-needed.txt
index a0d1c12a88..a649bfa211 100644
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -86,6 +86,10 @@ qemu (Abhijith PA)
   NOTE: 20220802: wcan now be released as DLA instead. The updated packages are/were running fine in a buster ganeti cluster. (jmm)
   NOTE: 20220808: conflicting pu at https://people.debian.org/~abhijith/upload/mruby/qemu_3.1+dfsg-8+deb10u9.dsc , needs to be merged (Beuc/abhijith)
 --
+rails
+  NOTE: 20220817: Programming language: Ruby.
+  NOTE: 20220817: Vulnerable to at least CVE-2022-21831.
+--
 rsync (Stefano Rivera)
   NOTE: 20220811: Programming language: C.
   NOTE: 20220811: All patches should be applied. If it is too disruptive - evaluate the CVE`s severity (Anton)
author	Chris Lamb <lamby@debian.org>	2022-08-17 11:35:04 -0700
committer	Chris Lamb <lamby@debian.org>	2022-08-17 11:35:04 -0700
commit	858776b84960f39db734747508b75fba3de0a3d2 (patch)
tree	78e1962b1f26087f69f4fc346da2d255b89fa80b /data/dla-needed.txt
parent	1e3e82011c03652a7212b83fc1c8c0b849c006a8 (diff)