[Git][security-tracker-team/security-tracker][master] new black issue

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Mar 19 16:29:01 GMT 2024


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e0356ad0 by Moritz Muehlenhoff at 2024-03-19T17:28:37+01:00
new black issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -48,7 +48,10 @@ CVE-2024-22412 (ClickHouse is an open-source column-oriented database management
 CVE-2024-21504 (Versions of the package livewire/livewire from 3.3.5 and before 3.4.9  ...)
 	NOT-FOR-US: livewire
 CVE-2024-21503 (Versions of the package black before 24.3.0 are vulnerable to Regular  ...)
-	TODO: check
+	- black <unfixed>
+	NOTE: https://security.snyk.io/vuln/SNYK-PYTHON-BLACK-6256273
+	NOTE: https://github.com/psf/black/releases/tag/24.3.0
+	NOTE: https://github.com/psf/black/commit/f00093672628d212b8965a8993cee8bedf5fe9b8
 CVE-2024-0055 (Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that ...)
 	NOT-FOR-US: AXIS OS
 CVE-2024-0054 (Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e0356ad0e95291e1ef276b9add1ce9ec5f63a15d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e0356ad0e95291e1ef276b9add1ce9ec5f63a15d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240319/63d2ca50/attachment.htm>


More information about the debian-security-tracker-commits mailing list