oss-sec mailing list archives
Re: CVE Request: various gems in aftermath of rubygem actionpack issue
From: Reed Loden <reed () reedloden com>
Date: Fri, 1 Mar 2013 10:10:30 -0800
On Fri, 1 Mar 2013 17:43:01 +0100 Marcus Meissner <meissner () suse de> wrote:
I think these rubygem updates have got no CVE entry/ies yet: https://support.cloud.engineyard.com/entries/22915701-january-14-2013-security-vulnerabilities-httparty-extlib-crack-nori-update-these-gems-immediately
nori got assigned CVE-2013-0285. I don't see any assignments on the list for httparty, extlib, or crack, though. Also see https://github.com/rubysec/ruby-advisory-db/issues/7 ~reed
Current thread:
- CVE Request: various gems in aftermath of rubygem actionpack issue Marcus Meissner (Mar 01)
- Re: CVE Request: various gems in aftermath of rubygem actionpack issue Reed Loden (Mar 01)
- Re: CVE Request: various gems in aftermath of rubygem actionpack issue Kurt Seifried (Mar 01)
- Re: CVE Request: various gems in aftermath of rubygem actionpack issue Olivier Gonzalez (Mar 01)
- Re: CVE Request: various gems in aftermath of rubygem actionpack issue Kurt Seifried (Mar 02)
- Re: CVE Request: various gems in aftermath of rubygem actionpack issue Olivier Gonzalez (Mar 01)