[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2024-9979/rust-pyo3

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e40d18d7 by Salvatore Bonaccorso at 2024-11-03T15:16:48+01:00
Track fixed version for CVE-2024-9979/rust-pyo3

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5819,7 +5819,7 @@ CVE-2024-9984 (Enterprise Cloud Database from Ragic does not authenticate access
 CVE-2024-9983 (Enterprise Cloud Database from Ragic does not properly validate a spec ...)
 	NOT-FOR-US: Enterprise Cloud Database from Ragic
 CVE-2024-9979 (A flaw was found in PyO3. This vulnerability causes a use-after-free i ...)
-	- rust-pyo3 <unfixed> (bug #1085296)
+	- rust-pyo3 0.22.5-1 (bug #1085296)
 	[bookworm] - rust-pyo3 <not-affected> (Vulnerable code introduced later)
 	NOTE: https://github.com/PyO3/pyo3/pull/4590
 	NOTE: https://rustsec.org/advisories/RUSTSEC-2024-0378.html



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e40d18d739e47632b7b4ee49566eaebae61bdf7e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e40d18d739e47632b7b4ee49566eaebae61bdf7e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241103/ce7f20c3/attachment.htm>