[Git][security-tracker-team/security-tracker][master] restrictedpython fixed in sid
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Sep 4 16:25:05 BST 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
76896904 by Moritz Muehlenhoff at 2023-09-04T17:24:35+02:00
restrictedpython fixed in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -628,7 +628,7 @@ CVE-2023-41538 (phpjabbers PHP Forum Script 3.0 is vulnerable to Cross Site Scri
CVE-2023-41537 (phpjabbers Business Directory Script 3.2 is vulnerable to Cross Site S ...)
NOT-FOR-US: PHPJabbers
CVE-2023-41039 (RestrictedPython is a restricted execution environment for Python to r ...)
- - restrictedpython <unfixed>
+ - restrictedpython 6.2-1
NOTE: https://github.com/zopefoundation/RestrictedPython/security/advisories/GHSA-xjw2-6jm9-rf67
NOTE: Fixed by: https://github.com/zopefoundation/RestrictedPython/commit/4134aedcff17c977da7717693ed89ce56d54c120
CVE-2023-40848 (Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin is vulnerable to Bu ...)
@@ -7337,7 +7337,7 @@ CVE-2023-37374 (A vulnerability has been identified in Tecnomatix Plant Simulati
CVE-2023-37280 (Pimcore Admin Classic Bundle provides a Backend UI for Pimcore based o ...)
NOT-FOR-US: Pimcore Admin Classic Bundle
CVE-2023-37271 (RestrictedPython is a tool that helps to define a subset of the Python ...)
- - restrictedpython <unfixed> (bug #1041429)
+ - restrictedpython 6.2-1 (bug #1041429)
NOTE: https://github.com/zopefoundation/RestrictedPython/security/advisories/GHSA-wqc8-x2pr-7jqh
NOTE: https://github.com/zopefoundation/RestrictedPython/commit/c8eca66ae49081f0016d2e1f094c3d72095ef531 (master)
NOTE: https://github.com/zopefoundation/RestrictedPython/commit/d8c5aa72c5d0ec8eceab635d93d6bc8321116002 (5.3)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76896904c7feae21a1756ca1942ee9beb3998abe
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76896904c7feae21a1756ca1942ee9beb3998abe
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230904/31222a12/attachment.htm>
More information about the debian-security-tracker-commits
mailing list