Use cve.org instead of nist.gov

Author: gfvcastro

de/news/_posts/2012-02-16-security-fix-for-ruby-openssl-module.md

@@ -55,6 +55,6 @@ um CVE-2011-3389 durchlesen.
 
 
 [1]: http://www.openssl.org/~bodo/tls-cbc.txt
-[2]: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3389
+[2]: https://www.cve.org/CVERecord?id=CVE-2011-3389
 [3]: https://bugs.ruby-lang.org/5353
 [4]: http://mla.n-z.jp/?ruby-talk=393484

de/news/_posts/2014-04-10-severe-openssl-vulnerability.md

@@ -12,7 +12,7 @@ In der OpenSSL-Implementation der Heartbeat-Erweiterung (`RFC6520`) von TLS/DTLS
 (Protokolle zum Verschlüsseln der Transportschicht) wurde eine
 kritische Sicherheitslücke entdeckt. Es handelt sich hierbei um ein
 schwerwiegendes Sicherheitsproblem, dem die CVE-Kennung
-[CVE-2014-0160](https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0160)
+[CVE-2014-0160](https://www.cve.org/CVERecord?id=CVE-2014-0160)
 zugewiesen wurde.
 
 Seine Ausnutzung kann das Auslesen des Serverspeichers durch den

de/news/_posts/2014-08-19-ruby-1-9-2-p330-released.md

@@ -54,4 +54,4 @@ Wir ermutigen Sie dazu, auf eine stabile und unterstützte
 [Version von Ruby](https://www.ruby-lang.org/de/downloads/)
 zu aktualisieren.
 
-[CVE-2014-6438]: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6438
+[CVE-2014-6438]: https://www.cve.org/CVERecord?id=CVE-2014-6438

de/news/_posts/2019-08-28-multiple-jquery-vulnerabilities-in-rdoc.md

@@ -18,8 +18,8 @@ wurde.
 
 Es wurden die folgenden Schwachstellen gemeldet:
 
-* [CVE-2012-6708](https://nvd.nist.gov/vuln/detail/CVE-2012-6708)
-* [CVE-2015-9251](https://nvd.nist.gov/vuln/detail/CVE-2015-9251)
+* [CVE-2012-6708](https://www.cve.org/CVERecord?id=CVE-2012-6708)
+* [CVE-2015-9251](https://www.cve.org/CVERecord?id=CVE-2015-9251)
 
 Es wird allen Ruby-Nutzern nachdrücklich empfohlen, die Ruby-Version
 zu aktualisieren oder wenigstens einen der nachfolgenden Workarounds

en/news/_posts/2012-02-16-security-fix-for-ruby-openssl-module.md

@@ -45,6 +45,6 @@ details, please find discussions and resources around CVE-2011-3389.
 
 
 [1]: http://www.openssl.org/~bodo/tls-cbc.txt
-[2]: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3389
+[2]: https://www.cve.org/CVERecord?id=CVE-2011-3389
 [3]: https://bugs.ruby-lang.org/5353
 [4]: http://mla.n-z.jp/?ruby-talk=393484

en/news/_posts/2014-04-10-severe-openssl-vulnerability.md

@@ -11,7 +11,7 @@ lang: en
 There is a severe vulnerability in OpenSSL's implementation of the TLS/DTLS
 (transport layer security protocols) heartbeat extension (`RFC6520`).
 This a serious vulnerability which has been assigned the CVE identifier
-[CVE-2014-0160](https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0160).
+[CVE-2014-0160](https://www.cve.org/CVERecord?id=CVE-2014-0160).
 
 Exploitation may lead to disclosure of memory contents from the server to the
 client and from the client to the server. An attacker can remotely retrieve

en/news/_posts/2014-08-19-ruby-1-9-2-p330-released.md

@@ -52,4 +52,4 @@ You can read the original report on the bug tracker:
 We encourage you to upgrade to a stable and maintained
 [version of Ruby](https://www.ruby-lang.org/en/downloads/).
 
-[CVE-2014-6438]: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6438
+[CVE-2014-6438]: https://www.cve.org/CVERecord?id=CVE-2014-6438

en/news/_posts/2019-08-28-multiple-jquery-vulnerabilities-in-rdoc.md

@@ -16,8 +16,8 @@ All Ruby users are recommended to update Ruby to the latest release which includ
 
 The following vulnerabilities have been reported.
 
-* [CVE-2012-6708](https://nvd.nist.gov/vuln/detail/CVE-2012-6708)
-* [CVE-2015-9251](https://nvd.nist.gov/vuln/detail/CVE-2015-9251)
+* [CVE-2012-6708](https://www.cve.org/CVERecord?id=CVE-2012-6708)
+* [CVE-2015-9251](https://www.cve.org/CVERecord?id=CVE-2015-9251)
 
 It is strongly recommended for all Ruby users to upgrade your Ruby installation or take one of the following workarounds as soon as possible.
 You also have to re-generate existing RDoc documentations to completely mitigate the vulnerabilities.

en/news/_posts/2021-05-02-os-command-injection-in-rdoc.md

@@ -15,7 +15,7 @@ It is recommended that all Ruby users update RDoc to the latest version that fix
 
 The following vulnerability has been reported.
 
-* [CVE-2021-31799](https://nvd.nist.gov/vuln/detail/CVE-2021-31799)
+* [CVE-2021-31799](https://www.cve.org/CVERecord?id=CVE-2021-31799)
 
 RDoc used to call `Kernel#open` to open a local file. If a Ruby project has a file whose name starts with `|` and ends with `tags`, the command following the pipe character is executed. A malicious Ruby project could exploit it to run an arbitrary command execution against a user who attempts to run `rdoc` command.
 

en/news/_posts/2021-07-07-starttls-stripping-in-net-imap.md

@@ -9,7 +9,7 @@ lang: en
 ---
 
 A StartTLS stripping vulnerability was discovered in Net::IMAP.
-This vulnerability has been assigned the CVE identifier [CVE-2021-32066](https://nvd.nist.gov/vuln/detail/CVE-2021-32066).
+This vulnerability has been assigned the CVE identifier [CVE-2021-32066](https://www.cve.org/CVERecord?id=CVE-2021-32066).
 We strongly recommend upgrading Ruby.
 
 net-imap is a default gem in Ruby 3.0.1 but it has a packaging issue, so please upgrade Ruby itself.