[Git][security-tracker-team/security-tracker][master] new python-aiosmtpd issue

Mon May 27 15:13:10 BST 2024


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
275fe914 by Moritz Muehlenhoff at 2024-05-27T16:12:34+02:00
new python-aiosmtpd issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4359,7 +4359,9 @@ CVE-2024-3658 (The Build App Online plugin for WordPress is vulnerable to authen
 CVE-2024-36043 (question_image.ts in SurveyJS Form Library before 1.10.4 allows conten ...)
 	NOT-FOR-US: SurveyJS Form Library
 CVE-2024-34083 (aiosmptd is  a reimplementation of the Python stdlib smtpd.py based on ...)
-	TODO: check
+	- python-aiosmtpd <unfixed>
+	NOTE: https://github.com/aio-libs/aiosmtpd/security/advisories/GHSA-wgjv-9j3q-jhg8
+	NOTE: https://github.com/aio-libs/aiosmtpd/commit/b3a4a2c6ecfd228856a20d637dc383541fcdbfda (v1.4.6)
 CVE-2024-31879 (IBM i 7.2, 7.3, and 7.4 could allow a remote attacker to execute arbit ...)
 	NOT-FOR-US: IBM
 CVE-2024-5069 (A vulnerability, which was classified as critical, has been found in S ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/275fe914c624a16781f70c8ca04110b8dc6ade87

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/275fe914c624a16781f70c8ca04110b8dc6ade87
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240527/5bbfced1/attachment.htm>
