diff options
author | Chris Lamb <lamby@debian.org> | 2021-06-13 09:10:01 +0100 |
---|---|---|
committer | Chris Lamb <lamby@debian.org> | 2021-06-13 09:14:49 +0100 |
commit | 6cdfc4f0b1901dd03480fb0e740f48403f525dbc (patch) | |
tree | 7029845991dc954c203f4d2681aed9bd15c912ec /data | |
parent | 0f53edc5c5407f12300da897ed21a28039d507a6 (diff) |
Triage CVE-2021-28965 in ruby2.3 for stretch LTS.
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list index c6fcc10843..929da77903 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -13476,6 +13476,7 @@ CVE-2021-28965 (The REXML gem before 3.2.5 in Ruby before 2.6.7, 2.7.x before 2. - ruby2.5 <removed> [buster] - ruby2.5 <postponed> (Minor issue, can be fixed along with next update) - ruby2.3 <removed> + [stretch] - ruby2.3 <postponed> (Minor issue; can be fixed in next update) [experimental] - ruby-rexml 3.2.5-1 - ruby-rexml <unfixed> (bug #986806) NOTE: https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/ |