From 3316523f7c8dc0d1b622b5d0dfcf2ccf41f1f52b Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sun, 29 Nov 2020 21:08:05 +0100
Subject: Track fixed version for older CVE-2013-4363/CVE-2013-4287

---
 data/CVE/list | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/data/CVE/list b/data/CVE/list
index 5be01ce15c..4ed4ebf73f 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -325837,7 +325837,7 @@ CVE-2013-4365 (Heap-based buffer overflow in the fcgid_header_bucket_read functi
 CVE-2013-4364 ((1) oo-analytics-export and (2) oo-analytics-import in the openshift-o ...)
 	NOT-FOR-US: OpenShift
 CVE-2013-4363 (Algorithmic complexity vulnerability in Gem::Version::ANCHORED_VERSION ...)
-	- rubygems <unfixed> (unimportant; bug #722361)
+	- rubygems 3.2.0~rc.1-1 (unimportant; bug #722361)
 	- libgems-ruby <removed> (unimportant; bug #722361)
 	NOTE: Non-issue, you trust the site providing the gem with installing arbitrary code, allowing
 	NOTE: it a potential elevated CPU consumption doesn't add any extra harm
@@ -326131,7 +326131,7 @@ CVE-2013-4288 (Race condition in PolicyKit (aka polkit) allows local users to by
 	[squeeze] - policykit-1 <no-dsa> (The update only deprecates an API and introduces a new option for pkcheck, no src package uses this API)
 	[wheezy] - policykit-1 <no-dsa> (The update only deprecates an API and introduces a new option for pkcheck, no src package uses this API)
 CVE-2013-4287 (Algorithmic complexity vulnerability in Gem::Version::VERSION_PATTERN  ...)
-	- rubygems <unfixed> (unimportant; bug #722361)
+	- rubygems 3.2.0~rc.1-1 (unimportant; bug #722361)
 	- libgems-ruby <removed> (unimportant; bug #722361)
 	NOTE: Non-issue, you trust the site providing the gem with installing arbitrary code, allowing
 	NOTE: it a potential elevated CPU consumption doesn't add any extra harm
-- 
cgit v1.2.3