Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > linux.debian.security > #6235

CVE-2023-33460, ruby-yajl affected?

From Anton Gladky <gladk@debian.org>
Newsgroups linux.debian.security
Subject CVE-2023-33460, ruby-yajl affected?
Date 2023-07-05 07:00 +0200
Message-ID <GO2Mp-33D9-5@gated-at.bofh.it> (permalink)
Organization linux.* mail to news gateway

Show all headers | View raw

[Multipart message — attachments visible in raw view] - view raw

Hello,

I am looking into CVE-2023-33460 and I am not sure that ruby-yajl
is affected. There is no direct dependency on yajl, where the vulnerability
was detected.

Should ruby-yajl be unmarked as affected by this CVE?

Thank you

Anton

Back to linux.debian.security | Previous | NextNext in thread | Find similar

Thread

CVE-2023-33460, ruby-yajl affected? Anton Gladky <gladk@debian.org> - 2023-07-05 07:00 +0200
  Re: CVE-2023-33460, ruby-yajl affected? Bastien Roucariès <bastien.roucaries@cyu.fr> - 2023-07-05 11:40 +0200
    Re: CVE-2023-33460, ruby-yajl affected? Tobias Frost <tobi@debian.org> - 2023-07-05 18:20 +0200
      Re: CVE-2023-33460, ruby-yajl affected? Anton Gladky <gladk@debian.org> - 2023-07-06 06:30 +0200

csiph-web