CI: bundle-audit: Ignore CVE-2020-8161 and CVE-2020-8165 (!338) · Merge requests · schleuder / schleuder · GitLab

Snippets Groups Projects

Merged georg requested to merge ci-bundler-audit-ignore-CVE-2020-8161-CVE-2020-8165 into master 4 years ago

CVE-2020-8161: Directory traversal in Rack::Directory

CVE-2020-8165: unmarshalling of user-provided objects in MemCacheStore and RedisCacheStore

Both vulnerabilities do not affect us, accordingly, ignore them.

Activity

georg changed milestone to %3.5.2 4 years ago

changed milestone to %3.5.2
georg added CI maintenance labels 4 years ago

added CI maintenance labels
Nina merged 4 years ago

merged
Nina mentioned in commit c7a32447 4 years ago

mentioned in commit c7a32447

Please register or sign in to reply