From 843220ddcb84050e61f2a4ddc655c120a4595c33 Mon Sep 17 00:00:00 2001 From: tjuyuxinzhang <101503193+tjuyuxinzhang@users.noreply.github.com> Date: Thu, 16 Apr 2026 15:49:32 +0800 Subject: [PATCH] Improve GHSA-6wpv-cj6x-v3jw --- .../GHSA-6wpv-cj6x-v3jw.json | 34 +++++++++++++++++-- 1 file changed, 31 insertions(+), 3 deletions(-) diff --git a/advisories/github-reviewed/2018/03/GHSA-6wpv-cj6x-v3jw/GHSA-6wpv-cj6x-v3jw.json b/advisories/github-reviewed/2018/03/GHSA-6wpv-cj6x-v3jw/GHSA-6wpv-cj6x-v3jw.json index 05d67a0120d5a..d47591fb06850 100644 --- a/advisories/github-reviewed/2018/03/GHSA-6wpv-cj6x-v3jw/GHSA-6wpv-cj6x-v3jw.json +++ b/advisories/github-reviewed/2018/03/GHSA-6wpv-cj6x-v3jw/GHSA-6wpv-cj6x-v3jw.json @@ -1,7 +1,7 @@ { "schema_version": "1.4.0", "id": "GHSA-6wpv-cj6x-v3jw", - "modified": "2023-01-25T23:04:00Z", + "modified": "2023-08-29T12:39:20Z", "published": "2018-03-13T16:15:57Z", "aliases": [ "CVE-2015-1828" @@ -25,7 +25,7 @@ "type": "ECOSYSTEM", "events": [ { - "introduced": "0" + "introduced": "0.7.0" }, { "fixed": "0.7.3" @@ -33,6 +33,25 @@ ] } ] + }, + { + "package": { + "ecosystem": "RubyGems", + "name": "http" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "0" + }, + { + "fixed": "0.6.4" + } + ] + } + ] } ], "references": [ @@ -44,6 +63,10 @@ "type": "WEB", "url": "https://github.com/ruby/openssl/issues/8" }, + { + "type": "PACKAGE", + "url": "https://github.com/httprb/http" + }, { "type": "WEB", "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/http/CVE-2015-1828.yml" @@ -55,11 +78,16 @@ { "type": "WEB", "url": "https://rubysec.com/advisories/http-CVE-2015-1828" + }, + { + "type": "WEB", + "url": "https://security.snyk.io/vuln/SNYK-RUBY-HTTP-20210" } ], "database_specific": { "cwe_ids": [ - "CWE-200" + "CWE-200", + "CWE-295" ], "severity": "MODERATE", "github_reviewed": true,