From de108471cd26fcccb7d91458212f5cf1298bfd9a Mon Sep 17 00:00:00 2001
From: Thomas Koppensteiner <ThomasKoppensteiner@users.noreply.github.com>
Date: Tue, 19 Nov 2024 21:46:01 +0000
Subject: [PATCH] Updated advisory posts against
 rubysec/ruby-advisory-db@abe5f92

---
 advisories/_posts/2024-11-01-CVE-2024-21510.md | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/advisories/_posts/2024-11-01-CVE-2024-21510.md b/advisories/_posts/2024-11-01-CVE-2024-21510.md
index cc0c98e..9a4d890 100644
--- a/advisories/_posts/2024-11-01-CVE-2024-21510.md
+++ b/advisories/_posts/2024-11-01-CVE-2024-21510.md
@@ -24,13 +24,17 @@ advisory:
     handling the X-Forwarded-Host header, attackers can potentially
     exploit Cache Poisoning or Routing-based SSRF.
   cvss_v3: 5.4
-  notes: Never patched
+  patched_versions:
+  - ">= 4.1.0"
   related:
     url:
     - https://nvd.nist.gov/vuln/detail/CVE-2024-21510
     - https://security.snyk.io/vuln/SNYK-RUBY-SINATRA-6483832
-    - https://github.com/sinatra/sinatra/pull/2010
+    - https://github.com/advisories/GHSA-hxx2-7vcw-mqr3
     - https://github.com/sinatra/sinatra/blob/b626e2d82c23b4fde0b51782fd32ca27ccde1d1a/lib/sinatra/base.rb#L319
     - https://github.com/sinatra/sinatra/blob/b626e2d82c23b4fde0b51782fd32ca27ccde1d1a/lib/sinatra/base.rb#L323C1-L343C17
-    - https://github.com/advisories/GHSA-hxx2-7vcw-mqr3
+    - https://github.com/sinatra/sinatra/issues/2052
+    - https://github.com/sinatra/sinatra/pull/2010
+    - https://github.com/sinatra/sinatra/pull/2053
+    - https://github.com/sinatra/sinatra/commit/cd3e00de20ddaff34ea30f7a74a7b9dad189d1d8
 ---