[Git][security-tracker-team/security-tracker][master] 2 commits: python3.8 removed from unstable

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
17dba178 by Salvatore Bonaccorso at 2021-02-02T07:18:04+01:00
python3.8 removed from unstable

- - - - -
2b34a144 by Salvatore Bonaccorso at 2021-02-02T07:19:04+01:00
python3.8 not present anymore in archive

- - - - -


2 changed files:

- data/CVE/list
- data/packages/removed-packages


Changes:

=====================================
data/CVE/list
=====================================
@@ -3078,7 +3078,7 @@ CVE-2021-3178 (** DISPUTED ** fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10
 	NOTE: Disputed/mild security relevance/impact
 CVE-2021-3177 (Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctyp ...)
 	- python3.9 3.9.1-3
-	- python3.8 <unfixed>
+	- python3.8 <removed>
 	- python3.7 <removed>
 	[buster] - python3.7 <no-dsa> (Minor issue)
 	[stretch] - python3.7 <no-dsa> (Minor issue)
@@ -26601,7 +26601,7 @@ CVE-2020-27620 (The Cosmos Skin for MediaWiki through 1.35.0 has stored XSS beca
 	NOT-FOR-US: MediaWiki extension
 CVE-2020-27619 (In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK  ...)
 	- python3.9 <unfixed> (unimportant)
-	- python3.8 <unfixed> (unimportant)
+	- python3.8 <removed> (unimportant)
 	- python3.7 <removed> (unimportant)
 	NOTE: https://python-security.readthedocs.io/vuln/cjk-codec-download-eval.html
 	NOTE: https://github.com/python/cpython/commit/2ef5caa58febc8968e670e39e3d37cf8eef3cab8 (master)
@@ -124910,7 +124910,7 @@ CVE-2019-9675 (** DISPUTED ** An issue was discovered in PHP 7.x before 7.1.27 a
 	NOTE: Fixed in 7.1.27, 7.3.3
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77586
 CVE-2019-9674 (Lib/zipfile.py in Python through 3.7.2 allows remote attackers to caus ...)
-	- python3.8 <unfixed> (unimportant)
+	- python3.8 <removed> (unimportant)
 	- python3.7 <removed> (unimportant)
 	- python3.5 <removed> (unimportant)
 	- python3.4 <removed> (unimportant)


=====================================
data/packages/removed-packages
=====================================
@@ -808,3 +808,4 @@ am-utils
 flashplugin-nonfree
 golang-1.14
 postgresql-12
+python3.8



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/df97e4a1e9dc0ba2dda58820efcb0344d37e4ec9...2b34a144f4980c2baabfdae57581d6f709a8f402

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/df97e4a1e9dc0ba2dda58820efcb0344d37e4ec9...2b34a144f4980c2baabfdae57581d6f709a8f402
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210202/edf8fcc1/attachment.html>