[Git][security-tracker-team/security-tracker][master] Add CVE-2021-21240/python-httplib2

Fri Feb 12 20:05:47 GMT 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a6d2f3bd by Salvatore Bonaccorso at 2021-02-12T21:04:50+01:00
Add CVE-2021-21240/python-httplib2

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -14417,7 +14417,10 @@ CVE-2021-21241 (The Python "Flask-Security-Too" package is used for adding secur
 	NOTE: https://github.com/Flask-Middleware/flask-security/commit/c05afe837e83f20f59c0fb409ce1240341d1ec41 (master)
 	NOTE: https://github.com/Flask-Middleware/flask-security/commit/61d313150b5f620d0b800896c4f2199005e84b1f (3.4.5)
 CVE-2021-21240 (httplib2 is a comprehensive HTTP client library for Python. In httplib ...)
-	TODO: check
+	- python-httplib2 <unfixed>
+	NOTE: https://github.com/httplib2/httplib2/security/advisories/GHSA-93xj-8mrv-444m
+	NOTE: https://github.com/httplib2/httplib2/commit/bd9ee252c8f099608019709e22c0d705e98d26bc (v0.19.0)
+	NOTE: https://github.com/httplib2/httplib2/pull/182
 CVE-2021-21239 (PySAML2 is a pure python implementation of SAML Version 2 Standard. Py ...)
 	- python-pysaml2 6.5.1-1 (bug #980772)
 	NOTE: https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a6d2f3bd2143538d8e16099e8ffb36f5e9074123

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a6d2f3bd2143538d8e16099e8ffb36f5e9074123
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210212/cdfd8d53/attachment.html>
