From 68bc7842edb719b72b881572f3b3c785ea5f411f Mon Sep 17 00:00:00 2001 From: Al Snow Date: Tue, 11 Nov 2025 11:53:38 -0500 Subject: [PATCH] Combined/deleted duplicate iodine gem as part of PR#585 --- gems/iodine/CVE-2024-22050.yml | 5 ++--- gems/iodine/GHSA-85rf-xh54-whp3.yml | 21 --------------------- 2 files changed, 2 insertions(+), 24 deletions(-) delete mode 100644 gems/iodine/GHSA-85rf-xh54-whp3.yml diff --git a/gems/iodine/CVE-2024-22050.yml b/gems/iodine/CVE-2024-22050.yml index 827113cb9c..7a220b73b7 100644 --- a/gems/iodine/CVE-2024-22050.yml +++ b/gems/iodine/CVE-2024-22050.yml @@ -3,11 +3,10 @@ gem: iodine cve: 2024-22050 ghsa: 85rf-xh54-whp3 url: https://github.com/boazsegev/iodine/security/advisories/GHSA-85rf-xh54-whp3 -title: Malicious URL drafting attack against iodines static file server may allow - path traversal +title: Malicious URL drafting attack against iodines static file + server may allow path traversal date: 2019-10-07 description: | - ### Impact A path traversal vulnerability was detected in iodine's static diff --git a/gems/iodine/GHSA-85rf-xh54-whp3.yml b/gems/iodine/GHSA-85rf-xh54-whp3.yml deleted file mode 100644 index 4f92cd1f41..0000000000 --- a/gems/iodine/GHSA-85rf-xh54-whp3.yml +++ /dev/null @@ -1,21 +0,0 @@ ---- -gem: iodine -ghsa: 85rf-xh54-whp3 -url: https://github.com/boazsegev/iodine/security/advisories/GHSA-85rf-xh54-whp3 -date: 2019-10-07 -title: iodine path traversal via malicious URL drafting attack -description: | - Malicious URL drafting attack against iodines static file server - may allow path traversal - - Impact: - A path traversal vulnerability was detected in iodine's static file service. - - This vulnerability effects any application running iodine's static file server - on an effected iodine version. - - Malicious URL drafting may cause the static file server to attempt a response - containing data from files that shouldn't be normally accessible from the - public folder. -patched_versions: - - ">= 0.7.34"