[Git][security-tracker-team/security-tracker][master] Add CVE-2019-9740/python*
Salvatore Bonaccorso
carnil at debian.org
Wed Mar 13 19:42:55 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ebecb16f by Salvatore Bonaccorso at 2019-03-13T19:42:03Z
Add CVE-2019-9740/python*
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,7 +1,13 @@
CVE-2019-9741 (An issue was discovered in net/http in Go 1.11.5. CRLF injection is ...)
TODO: check
CVE-2019-9740 (An issue was discovered in urllib2 in Python 2.x through 2.7.16 and ...)
- TODO: check
+ - python3.7 <unfixed>
+ - python3.6 <unfixed>
+ - python3.5 <removed>
+ - python3.4 <removed>
+ - python2.7 <unfixed>
+ - python-urllib3 <unfixed>
+ NOTE: https://bugs.python.org/issue36276
CVE-2019-9739
RESERVED
CVE-2019-9738 (jimmykuu Gopher 2.0 has DOM-based XSS via vectors involving the '<EMBED ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ebecb16ff9682d5e1c480858dca3ae40f65dd027
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ebecb16ff9682d5e1c480858dca3ae40f65dd027
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190313/b8c9a10d/attachment.html>
More information about the debian-security-tracker-commits
mailing list