[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-44900/py7zr via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Mar 26 06:18:29 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a83049d9 by Salvatore Bonaccorso at 2023-03-26T07:17:47+02:00
Track fixed version for CVE-2022-44900/py7zr via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -30701,7 +30701,7 @@ CVE-2022-44902
CVE-2022-44901
RESERVED
CVE-2022-44900 (A directory traversal vulnerability in the SevenZipFile.extractall() f ...)
- - py7zr <unfixed> (bug #1032091)
+ - py7zr 0.11.3+dfsg-5 (bug #1032091)
NOTE: https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406 (v0.20.1)
NOTE: https://lessonsec.com/cve/cve-2022-44900/
CVE-2022-44899
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a83049d99985551ac94c3e9a2f30a84e20bec735
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a83049d99985551ac94c3e9a2f30a84e20bec735
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230326/bb7e7204/attachment.htm>
More information about the debian-security-tracker-commits
mailing list