[Git][security-tracker-team/security-tracker][master] Mark CVE-2019-10160/python2.7 for stretch as not-affected

Sat Jun 8 13:45:57 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
84779d3a by Salvatore Bonaccorso at 2019-06-08T12:44:48Z
Mark CVE-2019-10160/python2.7 for stretch as not-affected

We did not fix CVE-2019-9636 yet for stretch and thus no incomplete fix
for CVE-2019-9636 was applied. An update in stretch should just contain
the whole patchsets needed.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6366,6 +6366,7 @@ CVE-2019-10160 (A security regression of CVE-2019-9636 was discovered in python
 	- python3.5 <not-affected> (Incomplete fix for CVE-2019-9636 not applied)
 	- python3.4 <not-affected> (Incomplete fix for CVE-2019-9636 not applied)
 	- python2.7 <unfixed>
+	[stretch] - python2.7 <not-affected> (Incomplete fix for CVE-2019-9636 not applied)
 	NOTE: Introduced by: https://github.com/python/cpython/commit/d537ab0ff9767ef024f26246899728f0116b1ec3 (v3.8.0a4)
 	NOTE: Fixed by: https://github.com/python/cpython/commit/8d0ef0b5edeae52960c7ed05ae8a12388324f87e (v3.8.0b1)
 	NOTE: https://github.com/python/cpython/commit/250b62acc59921d399f0db47db3b462cd6037e09 (3.7)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/84779d3a1af626f222e3ce247be17e8de09c9d7d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/84779d3a1af626f222e3ce247be17e8de09c9d7d
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190608/39bb6228/attachment.html>
