[Git][security-tracker-team/security-tracker][master] CVE-2022-29217 marked pyjwt as not affected in stretch
Enrico Zini (@enrico)
enrico at debian.org
Tue Jun 14 14:18:45 BST 2022
Enrico Zini pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3fa795c7 by Enrico Zini at 2022-06-14T15:18:34+02:00
CVE-2022-29217 marked pyjwt as not affected in stretch
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10994,6 +10994,7 @@ CVE-2022-29218 (RubyGems is a package registry used to supply software for the R
NOT-FOR-US: rubygems/rubygems.org
CVE-2022-29217 (PyJWT is a Python implementation of RFC 7519. PyJWT supports multiple ...)
- pyjwt <unfixed> (bug #1011747)
+ [stretch] - pyjwt <not-affected> (Vulnerable code not present)
NOTE: https://github.com/jpadilla/pyjwt/security/advisories/GHSA-ffqj-6fqr-9h24
NOTE: https://github.com/jpadilla/pyjwt/commit/9c528670c455b8d948aff95ed50e22940d1ad3fc (2.4.0)
NOTE: https://github.com/jpadilla/pyjwt/releases/tag/2.4.0
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fa795c7d6d1c1594394c00a77fc14fab6ade0d4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fa795c7d6d1c1594394c00a77fc14fab6ade0d4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220614/1c27b4dd/attachment.htm>
More information about the debian-security-tracker-commits
mailing list