[Git][security-tracker-team/security-tracker][master] Update references for CVE-2022-48566
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Aug 25 05:14:40 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4752e740 by Salvatore Bonaccorso at 2023-08-25T06:14:10+02:00
Update references for CVE-2022-48566
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -323,11 +323,15 @@ CVE-2022-48570 (Crypto++ through 8.4 contains a timing side channel in ECDSA sig
NOTE: functionality reasons.
TODO: check details on upstream fix (in 8.4?)
CVE-2022-48566 (An issue was discovered in compare_digest in Lib/hmac.py in Python thr ...)
- - python3.9 3.9.0~b4-1
+ - python3.9 3.9.1~rc1-1
- python3.7 <removed>
- python2.7 <removed>
[bullseye] - python2.7 <ignored> (Unsupported in Bullseye, only included to build a few applications)
- NOTE: https://github.com/python/cpython/commit/8183e11d87388e4e44e3242c42085b87a878f781
+ NOTE: https://bugs.python.org/issue40791
+ NOTE: https://github.com/python/cpython/commit/8183e11d87388e4e44e3242c42085b87a878f781 (v3.9.0b2)
+ NOTE: https://github.com/python/cpython/commit/c1bbca5b004b3f74d240ef8a76ff445cc1a27efb (v3.9.1rc1)
+ NOTE: https://github.com/python/cpython/commit/db95802bdfac4d13db3e2a391ec7b9e2f8d92dbe (v3.7.10)
+ NOTE: https://github.com/python/cpython/commit/8bef9ebb1b88cfa4b2a38b93fe4ea22015d8254a (v3.6.13)
NOTE: https://github.com/python/cpython/issues/84968
CVE-2022-48565 (An XML External Entity (XXE) issue was discovered in Python through 3. ...)
- python3.9 3.9.1~rc1-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4752e74074721769610f235cc1d637e8856793a4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4752e74074721769610f235cc1d637e8856793a4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230825/df3fdeeb/attachment.htm>
More information about the debian-security-tracker-commits
mailing list