GHSA SYNC: Modified 1 advisory (#764)

jasnow · web-flow · commit 50708080724d · 2024-03-15T16:03:52.000-07:00
diff --git a/gems/discordrb/CVE-2023-28102.yml b/gems/discordrb/CVE-2023-28102.yml
@@ -1,18 +1,20 @@
 ---
 gem: discordrb
 cve: 2023-28102
+ghsa: 8832-4mm5-x2r6
 url: https://securitylab.github.com/advisories/GHSL-2022-094_discordrb
 title: "GHSL-2022-094: Remote Code Execution in discordrb"
 date: 2023-03-27
 description: |
-  The encode_file method may lead to remote code execution (RCE) if
-  invoked with untrusted user-controlled data.
+  The encode_file method may lead to remote code execution
+   (RCE) if invoked with untrusted user-controlled data.
 cvss_v3: 9.6
 patched_versions:
   - ">= 3.4.3"
 related:
   url:
     - https://nvd.nist.gov/vuln/detail/CVE-2023-28102
-    - https://github.com/shardlab/discordrb/commit/91e13043ffa89227c3fcdc3408f06da237d28c95
     - https://securitylab.github.com/advisories/GHSL-2022-094_discordrb
+    - https://github.com/shardlab/discordrb/commit/91e13043ffa89227c3fcdc3408f06da237d28c95
     - https://rubygems.org/gems/discordrb
+    - https://github.com/advisories/GHSA-8832-4mm5-x2r6
