diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2024-04-27 22:14:04 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2024-04-27 22:14:55 +0200 |
| commit | b103e604add4b739918aa57f412b0c9e7450932b (patch) | |
| tree | 1ceca7ee717f6497bca105aa70f2b2130a6c24b8 | |
| parent | e63461bf63f381231603dda8819a79f482702c4d (diff) | |
Update information for CVE-2024-27282
| -rw-r--r-- | data/CVE/list | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list index 8d749fcdfe..a42032f93e 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -355,8 +355,10 @@ CVE-2022-48682 (In deletefiles in FDUPES before 2.2.0, a TOCTOU race condition a CVE-2024-27282 - ruby3.2 <unfixed> - ruby3.1 <unfixed> + - ruby2.7 <removed> + - ruby2.5 <removed> NOTE: https://www.ruby-lang.org/en/news/2024/04/23/arbitrary-memory-address-read-regexp-cve-2024-27282/ - TODO: check other versions and fixing commits + NOTE: https://github.com/ruby/ruby/commit/989a2355808a63fc45367785c82ffd46d18c900a CVE-2024-33602 [nscd: netgroup cache assumes NSS callback uses in-buffer strings] - glibc <unfixed> NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=31680 |