diff options
| -rw-r--r-- | data/CVE/2021.list | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 774124ab7f..bfebd81545 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -6283,7 +6283,7 @@ CVE-2021-41819 [Cookie Prefix Spoofing in CGI::Cookie.parse] - ruby2.3 <removed> NOTE: Fixed in Ruby 3.0.3, 2.7.5, 2.6.9 NOTE: https://www.ruby-lang.org/en/news/2021/11/24/cookie-prefix-spoofing-in-cgi-cookie-parse-cve-2021-41819/ - TODO: check upstream commits + NOTE: Fixed by: https://github.com/ruby/cgi/commit/052eb3a828b0f99bca39cfd800f6c2b91307dbd5 (v0.3.1) CVE-2021-41818 RESERVED CVE-2021-41817 [Regular Expression Denial of Service Vulnerability of Date Parsing Methods] |