[Git][security-tracker-team/security-tracker][master] 2 commits: python2.7 n/a for pydoc issue

Moritz Muehlenhoff jmm at debian.org
Thu Mar 11 08:50:01 GMT 2021 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2e7ddea0 by Moritz Muehlenhoff at 2021-03-11T09:46:25+01:00
python2.7 n/a for pydoc issue

- - - - -
2b5c3766 by Moritz Muehlenhoff at 2021-03-11T09:49:06+01:00
debian-cvelist-insert-nodsa: switch thing-at-point data type

file-name includes "." as well and it's not really worth the effort to
add a specific regex for Debian srcpkg names.

- - - - -


2 changed files:

- conf/cvelist.el
- data/CVE/list


Changes:

=====================================
conf/cvelist.el
=====================================
@@ -30,7 +30,7 @@
   "Insert no-dsa comment based on the current source entry."
   (interactive)
   (setq reason (read-string "Reason for no-dsa: " "Minor issue"))
-  (setq srcpkg (thing-at-point 'symbol))
+  (setq srcpkg (thing-at-point 'filename))
   (next-line)
   (beginning-of-line)
   (insert (concat "\t[buster] - " srcpkg " <no-dsa> (" reason ")\n" )))


=====================================
data/CVE/list
=====================================
@@ -89,9 +89,11 @@ CVE-2021-XXXX [world-readable user data information]
 CVE-2021-3426
 	RESERVED
 	- python3.9 <unfixed>
+	[buster] - python3.9 <no-dsa> (Minor issue)
 	- python3.7 <removed>
+	[buster] - python3.7 <no-dsa> (Minor issue)
 	- python3.5 <removed>
-	- python2.7 <unfixed>
+	- python2.7 <not-affected> (Vulnerable code not present)
 	NOTE: https://bugs.python.org/issue42988
 	NOTE: https://python-security.readthedocs.io/vuln/pydoc-getfile.html
 	NOTE: https://github.com/python/cpython/pull/24337



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1eb9d1cc4fbe8e1c681947b1641351782f0f7f26...2b5c3766d61829a8f0c949dfc2e21c14f1eeab17

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1eb9d1cc4fbe8e1c681947b1641351782f0f7f26...2b5c3766d61829a8f0c949dfc2e21c14f1eeab17
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210311/210154f6/attachment.htm>

More information about the debian-security-tracker-commits mailing list