[Git][security-tracker-team/security-tracker][master] Add CVE-2024-37891/python-urllib3
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Jun 17 22:05:16 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a24c6d05 by Salvatore Bonaccorso at 2024-06-17T23:04:35+02:00
Add CVE-2024-37891/python-urllib3
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -35,7 +35,9 @@ CVE-2024-37895 (Lobe Chat is an open-source LLMs/AI chat framework. In affected
CVE-2024-37893 (Firefly III is a free and open source personal finance manager. In aff ...)
NOT-FOR-US: Firefly
CVE-2024-37891 (urllib3 is a user-friendly HTTP client library for Python. When using ...)
- TODO: check
+ - python-urllib3 <unfixed>
+ NOTE: https://github.com/urllib3/urllib3/security/advisories/GHSA-34jh-p97f-mpxf
+ NOTE: https://github.com/urllib3/urllib3/commit/accff72ecc2f6cf5a76d9570198a93ac7c90270e (2.2.2)
CVE-2024-37890 (ws is an open source WebSocket client and server for Node.js. A reques ...)
- node-ws <unfixed>
NOTE: https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a24c6d05d4256311da0fe4efa528075107de9dce
--
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a24c6d05d4256311da0fe4efa528075107de9dce
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240617/ccf7a5d5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list