Skip to content

Commit 5070808

Browse files
jasnowjasnow
authored
GHSA SYNC: Modified 1 advisory (#764)
1 parent ff710b9 commit 5070808

File tree

1 file changed

+5
-3
lines changed

1 file changed

+5
-3
lines changed

gems/discordrb/CVE-2023-28102.yml

Lines changed: 5 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,18 +1,20 @@
11
---
22
gem: discordrb
33
cve: 2023-28102
4+
ghsa: 8832-4mm5-x2r6
45
url: https://securitylab.github.com/advisories/GHSL-2022-094_discordrb
56
title: "GHSL-2022-094: Remote Code Execution in discordrb"
67
date: 2023-03-27
78
description: |
8-
The encode_file method may lead to remote code execution (RCE) if
9-
invoked with untrusted user-controlled data.
9+
The encode_file method may lead to remote code execution
10+
(RCE) if invoked with untrusted user-controlled data.
1011
cvss_v3: 9.6
1112
patched_versions:
1213
- ">= 3.4.3"
1314
related:
1415
url:
1516
- https://nvd.nist.gov/vuln/detail/CVE-2023-28102
16-
- https://github.com/shardlab/discordrb/commit/91e13043ffa89227c3fcdc3408f06da237d28c95
1717
- https://securitylab.github.com/advisories/GHSL-2022-094_discordrb
18+
- https://github.com/shardlab/discordrb/commit/91e13043ffa89227c3fcdc3408f06da237d28c95
1819
- https://rubygems.org/gems/discordrb
20+
- https://github.com/advisories/GHSA-8832-4mm5-x2r6

0 commit comments

Comments
 (0)