[Git][security-tracker-team/security-tracker][master] Track fixed version for python-werkzeug issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Apr 21 17:22:37 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
53ce837e by Salvatore Bonaccorso at 2023-04-21T18:22:09+02:00
Track fixed version for python-werkzeug issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15763,7 +15763,7 @@ CVE-2023-25578 (Starlite is an Asynchronous Server Gateway Interface (ASGI) fram
 	NOT-FOR-US: Starlite
 CVE-2023-25577 (Werkzeug is a comprehensive WSGI web application library. Prior to ver ...)
 	{DLA-3346-1}
-	- python-werkzeug <unfixed> (bug #1031370)
+	- python-werkzeug 2.2.2-3 (bug #1031370)
 	NOTE: https://github.com/pallets/werkzeug/commit/517cac5a804e8c4dc4ed038bb20dacd038e7a9f1 (2.2.3)
 	NOTE: https://github.com/pallets/werkzeug/security/advisories/GHSA-xg9f-g7g7-2323
 CVE-2023-25576 (@fastify/multipart is a Fastify plugin to parse the multipart content- ...)
@@ -20283,7 +20283,7 @@ CVE-2023-23935 (Discourse is an open-source messaging platform. In versions 3.0.
 	NOT-FOR-US: Discourse
 CVE-2023-23934 (Werkzeug is a comprehensive WSGI web application library. Browsers may ...)
 	{DLA-3346-1}
-	- python-werkzeug <unfixed> (bug #1031370)
+	- python-werkzeug 2.2.2-3 (bug #1031370)
 	NOTE: https://github.com/pallets/werkzeug/commit/cf275f42acad1b5950c50ffe8ef58fe62cdce028 (2.2.3)
 	NOTE: https://github.com/pallets/werkzeug/security/advisories/GHSA-px8h-6qxv-m22q
 CVE-2023-23933 (OpenSearch Anomaly Detection identifies atypical data and receives aut ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53ce837e0998fa638dd098bc7f2ce6c7fde7ba4d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53ce837e0998fa638dd098bc7f2ce6c7fde7ba4d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230421/6de47688/attachment.htm>

More information about the debian-security-tracker-commits mailing list