[Git][security-tracker-team/security-tracker][master] Add CVE-2023-24329/python
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Feb 18 10:06:28 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b594b52f by Salvatore Bonaccorso at 2023-02-18T11:05:54+01:00
Add CVE-2023-24329/python
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4920,7 +4920,14 @@ CVE-2023-24331
CVE-2023-24330
RESERVED
CVE-2023-24329 (An issue in the urllib.parse component of Python before v3.11 allows a ...)
- TODO: check
+ - python3.11 3.11.1-1
+ - python3.9 <removed>
+ - python3.7 <removed>
+ NOTE: https://pointernull.com/security/python-url-parse-problem.html
+ NOTE: https://github.com/python/cpython/pull/99421
+ NOTE: https://github.com/python/cpython/pull/99446 (backport for 3.11 branch)
+ NOTE: https://github.com/python/cpython/commit/439b9cfaf43080e91c4ad69f312f21fa098befc7 (v3.12.0a2)
+ NOTE: https://github.com/python/cpython/commit/72d356e3584ebfb8e813a8e9f2cd3dccf233c0d9 (v3.11.1)
CVE-2023-24328
RESERVED
CVE-2023-24327
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b594b52fff548f02b04e2870a09d88186e0be7c4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b594b52fff548f02b04e2870a09d88186e0be7c4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230218/f9b46201/attachment.htm>
More information about the debian-security-tracker-commits
mailing list