Status of CVE-2017-0903 fixes
Asked by
Scott Emmons
Hello, what is the status of fixes related to CVE-2017-0903 [1]? There are still a number of "needs-triage" statuses, yet debian appears to have largely pushed fixes already for many version/package combinations [2] - "ruby2.3" for example. (I have no idea how the ubuntu packages differ from upstream debian packages for this or packages such as "jruby"). This CVE is several months old already and is a potential remote code execution vulnerability.
Thank you!
[1] https:/
[2] https:/
Question information
- Language:
- English Edit question
- Status:
- Expired
- For:
- Ubuntu ruby2.3 Edit question
- Assignee:
- No assignee Edit question
- Last query:
- Last reply:
To post a message you must log in.