[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2021-4189: Mark as fixed in bullseye
Andrej Shadura (@andrewsh)
andrewsh at debian.org
Mon Nov 25 13:47:44 GMT 2024
Andrej Shadura pushed to branch master at Debian Security Tracker / security-tracker
Commits:
33f809b5 by Andrej Shadura at 2024-11-25T14:46:34+01:00
CVE-2021-4189: Mark as fixed in bullseye
Fix ported from cpython by upstream in the packaged version
- - - - -
d2410c8d by Andrej Shadura at 2024-11-25T14:47:10+01:00
CVE-2022-42919: Mention cpython not python3 for clarity
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -174190,7 +174190,7 @@ CVE-2022-42919 (Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux all
[buster] - python3.7 <not-affected> (Vulnerable functionality backported later in 3.7.8)
- python2.7 <not-affected> (Vulnerable code introduced later)
- pypy3 7.3.11+dfsg-1
- [bullseye] - pypy3 <not-affected> (Vulnerable functionality ported from python3 later in 7.3.8)
+ [bullseye] - pypy3 <not-affected> (Vulnerable functionality ported from cpython later in 7.3.8)
[buster] - pypy3 <not-affected> (Vulnerable code introduced later)
NOTE: https://github.com/python/cpython/issues/97514
NOTE: https://github.com/python/cpython/commit/4686d77a04570a663164c03193d9def23c89b122 (3.11-branch)
@@ -235562,7 +235562,7 @@ CVE-2021-4189 (A flaw was found in Python, specifically in the FTP (File Transfe
- python2.7 2.7.18-13.1
[bullseye] - python2.7 <ignored> (Python 2.7 in Bullseye not covered by security support)
- pypy3 7.3.8+dfsg-1
- [bullseye] - pypy3 <no-dsa> (Minor issue)
+ [bullseye] - pypy3 7.3.5+dfsg-1
[buster] - pypy3 <no-dsa> (Minor issue)
NOTE: https://bugs.python.org/issue43285
NOTE: https://github.com/python/cpython/commit/0ab152c6b5d95caa2dc1a30fa96e10258b5f188e (master)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/4e14308f4139dde5d52916efeb9fe0d2d25c83c0...d2410c8d85a9c6912f4dad9771f9a14172c1ea90
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/4e14308f4139dde5d52916efeb9fe0d2d25c83c0...d2410c8d85a9c6912f4dad9771f9a14172c1ea90
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241125/485b8af6/attachment.htm>
More information about the debian-security-tracker-commits
mailing list