[Git][security-tracker-team/security-tracker][master] python3.7 spu

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
324a5137 by Moritz Muehlenhoff at 2020-01-03T22:59:03+01:00
python3.7 spu

- - - - -


3 changed files:

- data/CVE/list
- data/dsa-needed.txt
- data/next-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -19164,6 +19164,7 @@ CVE-2019-16936
 CVE-2019-16935 (The documentation XML-RPC server in Python through 2.7.16, 3.x through ...)
 	- python3.8 3.8.0~rc1-1
 	- python3.7 3.7.5~rc1-1
+	[buster] - python3.7 <no-dsa> (Minor issue)
 	- python3.5 <removed>
 	- python3.4 <removed>
 	[jessie] - python3.4 <ignored> (Minor Issue, XSS in an unlikely use-case)
@@ -21707,6 +21708,7 @@ CVE-2019-16056 (An issue was discovered in Python through 2.7.16, 3.x through 3.
 	{DLA-1925-1 DLA-1924-1}
 	- python3.8 3.8.0~b4-1
 	- python3.7 3.7.4-4
+	[buster] - python3.7 <no-dsa> (Minor issue)
 	- python3.5 <removed>
 	- python3.4 <removed>
 	- python2.7 2.7.17~rc1-1 (bug #940901)
@@ -40620,7 +40622,7 @@ CVE-2019-9949 (Western Digital My Cloud Cloud, Mirror Gen2, EX2 Ultra, EX2100, E
 CVE-2019-9948 (urllib in Python 2.x through 2.7.16 supports the local_file: scheme, w ...)
 	{DLA-1852-1 DLA-1834-1}
 	- python3.7 3.7.4~rc2-2
-	[stretch] - python3.7 <no-dsa> (Minor issue)
+	[buster] - python3.7 <no-dsa> (Minor issue)
 	- python3.6 <removed>
 	- python3.5 <removed>
 	- python3.4 <removed>


=====================================
data/dsa-needed.txt
=====================================
@@ -41,8 +41,6 @@ nss/oldstable (jmm)
 --
 poppler (jmm)
 --
-python3.5 (jmm)
---
 python-django
 --
 python-reportlab (hle)


=====================================
data/next-point-update.txt
=====================================
@@ -179,3 +179,15 @@ CVE-2019-19075
 	[buster] - linux 4.19.87-1
 CVE-2019-2228
 	[buster] - cups 2.2.10-6+deb10u2
+CVE-2019-9740
+	[buster] - python3.7 3.7.3-2+deb10u1
+CVE-2019-9947
+	[buster] - python3.7 3.7.3-2+deb10u1
+CVE-2019-9948
+	[buster] - python3.7 3.7.3-2+deb10u1
+CVE-2019-10160
+	[buster] - python3.7 3.7.3-2+deb10u1
+CVE-2019-16056
+	[buster] - python3.7 3.7.3-2+deb10u1
+CVE-2019-16935
+	[buster] - python3.7 3.7.3-2+deb10u1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/324a5137819ffe3ed041399ea28fd25d826058b4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/324a5137819ffe3ed041399ea28fd25d826058b4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200103/3cebe13d/attachment.html>