[Git][security-tracker-team/security-tracker][master] Reserve DLA-2950-1 for python-scrapy
Emilio Pozuelo Monfort (@pochu)
pochu at debian.org
Wed Mar 16 11:48:43 GMT 2022
Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0450e571 by Emilio Pozuelo Monfort at 2022-03-16T12:48:23+01:00
Reserve DLA-2950-1 for python-scrapy
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -32968,7 +32968,6 @@ CVE-2021-41125 (Scrapy is a high-level web crawling and scraping framework for P
- python-scrapy 2.5.1-1
[bullseye] - python-scrapy <no-dsa> (Minor issue)
[buster] - python-scrapy <no-dsa> (Minor issue)
- [stretch] - python-scrapy <no-dsa> (Minor issue)
NOTE: https://github.com/scrapy/scrapy/security/advisories/GHSA-jwqp-28gf-p498
NOTE: Fixed by: https://github.com/scrapy/scrapy/commit/b01d69a1bf48060daec8f751368622352d8b85a6 (1.8)
CVE-2021-41124 (Scrapy-splash is a library which provides Scrapy and JavaScript integr ...)
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[16 Mar 2022] DLA-2950-1 python-scrapy - security update
+ {CVE-2021-41125 CVE-2022-0577}
+ [stretch] - python-scrapy 1.0.3-2+deb9u1
[15 Mar 2022] DLA-2949-1 spip - security update
{CVE-2022-26846 CVE-2022-26847}
[stretch] - spip 3.1.4-4~deb9u5
=====================================
data/dla-needed.txt
=====================================
@@ -64,8 +64,6 @@ pjproject (Abhijith PA)
NOTE: 20220302: uploading asterisk, ring and pjproject in one go (abhijith)
NOTE: 20220314: https://people.debian.org/~abhijith/upload/vda/pjproject_2.5.5~dfsg-6+deb9u3.dsc
--
-python-scrapy (Emilio)
---
python-treq
--
ring (Abhijith PA)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0450e57117d6a6de6116ad217f25821d63f75a3f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0450e57117d6a6de6116ad217f25821d63f75a3f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220316/7c5b52d2/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list