commit by to_remotes 2023-11-02 12:38:30 +0100 from vmdevac

bundle-audit-time.txt

@@ -1 +1 @@
-2023-11-02T12:37:02+01:00
+2023-11-02T12:38:29+01:00

bundle-audit.json

@@ -1 +1 @@
-{"version":"0.9.1","created_at":"2023-11-02 12:37:01 +0100","results":[{"type":"unpatched_gem","gem":{"name":"rmagick","version":"5.2.0"},"advisory":{"path":"/home/wiseadvice/.local/share/ruby-advisory-db/gems/rmagick/CVE-2023-5349.yml","id":"CVE-2023-5349","url":"https://github.com/advisories/GHSA-frgf-8jr5-j2jv","title":"memory leak flaw was found in ruby-magick","date":"2023-10-30","description":"A memory leak flaw was found in ruby-magick, an interface between\nRuby and ImageMagick. This issue can lead to a denial of service\n(DOS) by memory exhaustion.\n","cvss_v2":null,"cvss_v3":5.3,"cve":"2023-5349","osvdb":null,"ghsa":"frgf-8jr5-j2jv","unaffected_versions":[],"patched_versions":[">= 5.3.0"],"criticality":"medium"}}]}
+{"version":"0.9.1","created_at":"2023-11-02 12:38:29 +0100","results":[]}

report.txt

@@ -1,10 +1 @@
-Name: rmagick
+No vulnerabilities found
-Version: 5.2.0
-CVE: CVE-2023-5349
-GHSA: GHSA-frgf-8jr5-j2jv
-Criticality: Medium
-URL: https://github.com/advisories/GHSA-frgf-8jr5-j2jv
-Title: memory leak flaw was found in ruby-magick
-Solution: upgrade to '>= 5.3.0'
-
-Vulnerabilities found!

update-info.txt

@@ -1,9 +1,5 @@
 Updating ruby-advisory-db ...
-Updating c558c02..a89b84a
+Already up to date.
-Fast-forward
- gems/rmagick/CVE-2023-5349.yml | 26 ++++++++++++++++++++++++++
- 1 file changed, 26 insertions(+)
- create mode 100644 gems/rmagick/CVE-2023-5349.yml
 Updated ruby-advisory-db
 ruby-advisory-db:
   advisories:	824 advisories