diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2022-05-27 21:30:34 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-05-27 21:30:34 +0200 |
| commit | cfe1ab89b5e6814a491ebddaadb38c4cdc83983e (patch) | |
| tree | a19337ba3383469ac0363a0922953a4eeda7c013 | |
| parent | b17c9967065fb39ca5dae982db1b1598298ab5a0 (diff) | |
Reference upstream commits for CVE-2022-22577
| -rw-r--r-- | data/CVE/list | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list index 69fa5b7d12..8a02d1e2b4 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -27860,7 +27860,9 @@ CVE-2022-22578 (A logic issue was addressed with improved validation. This issue CVE-2022-22577 (An XSS Vulnerability in Action Pack >= 5.2.0 and < 5.2.0 that co ...) - rails <unfixed> (bug #1011941) NOTE: https://discuss.rubyonrails.org/t/cve-2022-22577-possible-xss-vulnerability-in-action-pack/80533 - NOTE: https://github.com/rails/rails/commit/2b820a2a69fa50cffa74b4aedc57bf92ed6910ec (6-1-stable) + NOTE: https://github.com/rails/rails/commit/2b820a2a69fa50cffa74b4aedc57bf92ed6910ec (v6.1.5.1) + NOTE: https://github.com/rails/rails/commit/5299b57d596ea274f77f5ffee2b79c6ee0255508 (v6.0.4.8) + NOTE: https://github.com/rails/rails/commit/d2253115ac2b30f5f7210670af906cebf79cf809 (v5.2.7.1) CVE-2022-22576 (An improper authentication vulnerability exists in curl 7.33.0 to and ...) - curl 7.83.0-1 (bug #1010295) NOTE: https://curl.se/docs/CVE-2022-22576.html |