8000 Fix gem versions in rubyzip advisory by dannote · Pull Request #353 · rubysec/ruby-advisory-db · GitHub
[go: up one dir, main page]

Skip to content

Fix gem versions in rubyzip advisory #353

10000
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 1 commit into from
Sep 10, 2018
Merged

Fix gem versions in rubyzip advisory #353

merged 1 commit into from
Sep 10, 2018

Conversation

dannote
Copy link
Contributor
@dannote dannote commented Sep 10, 2018

The supplied patched_version is incorrect. See rubyzip/rubyzip#315 for more details.

@reedloden reedloden merged commit 3c4591b into rubysec:master Sep 10, 2018
@reedloden
Copy link
Member

Thank you!

@somethingnew2-0
Copy link

This change should be reverted. The patched_version was correct. See rubyzip/rubyzip#369 for more details.

@reedloden
Copy link
Member

@somethingnew2-0 You're correct. I mistakenly didn't look into this closely enough. My bad. Thought this was referring to CVE-2017-5946.

reedloden added a commit to reedloden/ruby-advisory-db that referenced this pull request Sep 11, 2018
@reedloden
Copy link
Member

This has been reverted in 5e60b09

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants
0