Skip to content
Commits on Source (2)
Show whitespace changes
Inline Side-by-side
data/CVE/list
View file @ 25a10cc7
......@@ -21827,10 +21827,13 @@ CVE-2018-16479
CVE-2018-16478 (A Path Traversal in simplehttpserver versions <=0.2.1 allows to list ...)
NOT-FOR-US: simplehttpserver
CVE-2018-16477 (A bypass vulnerability in Active Storage >= 5.2.0 for Google Cloud ...)
- rails <not-affected> (Only affects >= 5.2.0; vulnerable code not present)
- rails 2:5.2.2+dfsg-1 (bug #914848)
[stretch] - rails <not-affected> (Only affects >= 5.2.0; vulnerable code not present)
[jessie] - rails <not-affected> (Only affects >= 5.2.0; vulnerable code not present)
NOTE: https://www.openwall.com/lists/oss-security/2018/11/27/5
NOTE: Originally no version was affected until 2:5.2.0+dfsg-2 was uploaded to unstable.
CVE-2018-16476 (A Broken Access Control vulnerability in Active Job versions &gt;= 4.2.0 ...)
- rails <unfixed> (bug #914847)
- rails 2:5.2.2+dfsg-1 (bug #914847)
[jessie] - rails <not-affected> (only affects >= 4.2.0)
NOTE: https://www.openwall.com/lists/oss-security/2018/11/27/4
CVE-2018-16475 (A Path Traversal in Knightjs versions &lt;= 0.0.1 allows an attacker to ...)