summaryrefslogtreecommitdiffstats
path: root/data
diff options
context:
space:
mode:
authorChris Lamb <lamby@debian.org>2021-06-13 09:10:01 +0100
committerChris Lamb <lamby@debian.org>2021-06-13 09:14:49 +0100
commit6cdfc4f0b1901dd03480fb0e740f48403f525dbc (patch)
tree7029845991dc954c203f4d2681aed9bd15c912ec /data
parent0f53edc5c5407f12300da897ed21a28039d507a6 (diff)
Triage CVE-2021-28965 in ruby2.3 for stretch LTS.
Diffstat (limited to 'data')
-rw-r--r--data/CVE/list1
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list
index c6fcc10843..929da77903 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -13476,6 +13476,7 @@ CVE-2021-28965 (The REXML gem before 3.2.5 in Ruby before 2.6.7, 2.7.x before 2.
- ruby2.5 <removed>
[buster] - ruby2.5 <postponed> (Minor issue, can be fixed along with next update)
- ruby2.3 <removed>
+ [stretch] - ruby2.3 <postponed> (Minor issue; can be fixed in next update)
[experimental] - ruby-rexml 3.2.5-1
- ruby-rexml <unfixed> (bug #986806)
NOTE: https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/

© 2014-2024 Faster IT GmbH | imprint | privacy policy