Author: gilbert-guest Date: 2010-01-25 03:05:07 +0000 (Mon, 25 Jan 2010) New Revision: 13914 Modified: data/CVE/list Log: ruby issue is unimportant Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-01-25 03:01:25 UTC (rev 13913) +++ data/CVE/list 2010-01-25 03:05:07 UTC (rev 13914) @@ -947,7 +947,7 @@ CVE-2009-4492 (WEBrick 1.3.1 in Ruby 1.8.6 through patchlevel 383, 1.8.7 through ...) - ruby1.8 1.8.7.249-1 (unimportant; bug #564598) - ruby1.9 <unfixed> (unimportant; bug #564647) - - ruby1.9.1 1.9.1.378-1 (medium; bug #564646) + - ruby1.9.1 1.9.1.378-1 (unimportant; bug #564646) NOTE: The actual issue is within the broken terminal emulators and needs to be fixed there, see CVE-2009-4487 NOTE: same as CVE-2009-4487 CVE-2009-4491 (thttpd 2.25b0 writes data to a log file without sanitizing ...)