diff --git a/gems/sinatra/CVE-2025-61921.yml b/gems/sinatra/CVE-2025-61921.yml index d203182518..2b2549c2d6 100644 --- a/gems/sinatra/CVE-2025-61921.yml +++ b/gems/sinatra/CVE-2025-61921.yml @@ -2,7 +2,7 @@ gem: sinatra cve: 2025-61921 ghsa: mr3q-g2mv-mr4q -url: https://github.com/sinatra/sinatra/security/advisories/GHSA-mr3q-g2mv-mr4q +url: https://nvd.nist.gov/vuln/detail/CVE-2025-61921 title: Sinatra is vulnerable to ReDoS through ETag header value generation date: 2025-10-10 description: | @@ -32,6 +32,7 @@ patched_versions: - ">= 4.2.0" related: url: + - https://nvd.nist.gov/vuln/detail/cve-2025-61921 - https://github.com/sinatra/sinatra/security/advisories/GHSA-mr3q-g2mv-mr4q - https://github.com/sinatra/sinatra/issues/2120 - https://github.com/sinatra/sinatra/pull/1823 diff --git a/rubies/rbx/CVE-2012-5372.yml b/rubies/rbx/CVE-2012-5372.yml index 966e3df205..af99a7f4b9 100644 --- a/rubies/rbx/CVE-2012-5372.yml +++ b/rubies/rbx/CVE-2012-5372.yml @@ -22,7 +22,7 @@ related: url: - https://nvd.nist.gov/vuln/detail/CVE-2012-5372 - https://github.com/rubinius/rubinius/commit/a9a40fc6a1256bcf6382631b710430105c5dd868 - - https://github.com/advisories/GHSA-GHSA-9f35-5wj4-v27g + - https://github.com/advisories/GHSA-9f35-5wj4-v27g - http://2012.appsec-forum.ch/conferences/#c17 - http://www.ocert.org/advisories/ocert-2012-001.html - https://web.archive.org/web/20200229110821/http://www.securityfocus.com/bid/56670