Updated advisory posts against rubysec/ruby-advisory-db@b904407

Author: postmodern

advisories/_posts/2024-02-26-CVE-2024-27456.md

@@ -14,7 +14,7 @@ advisory:
   description: |
     rack-cors (aka Rack CORS Middleware) 2.0.1 has 0666 permissions
     for the .rb files.
-  notes: Never patched
+  notes: Not yet patched
   unaffected_versions:
   - "< 2.0.1"
   related:

advisories/_posts/2024-02-29-CVE-2023-51774.md

@@ -17,7 +17,8 @@ advisory:
     The json-jwt (aka JSON::JWT) gem versions 1.16.5 and below sometimes allows
     bypass of identity checks via a sign/encryption confusion attack.
     For example, JWE can sometimes be used to bypass JSON::JWT.decode.
-  notes: Not patched yet
+  patched_versions:
+  - ">= 1.16.6"
   related:
     url:
     - https://nvd.nist.gov/vuln/detail/CVE-2023-51774