[Git][security-tracker-team/security-tracker][master] Add CVE-2024-47532/restrictedpython
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Sep 30 21:34:53 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
43ab87f9 by Salvatore Bonaccorso at 2024-09-30T22:34:27+02:00
Add CVE-2024-47532/restrictedpython
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9,7 +9,9 @@ CVE-2024-47641 (Improper Neutralization of Input During Web Page Generation (XSS
CVE-2024-47536 (Citizen is a MediaWiki skin that makes extensions part of the cohesive ...)
TODO: check
CVE-2024-47532 (RestrictedPython is a restricted execution environment for Python to r ...)
- TODO: check
+ - restrictedpython <unfixed>
+ NOTE: https://github.com/zopefoundation/RestrictedPython/security/advisories/GHSA-5rfv-66g4-jr8h
+ NOTE: Fixed by: https://github.com/zopefoundation/RestrictedPython/commit/d701cc36cccac36b21fa200f1f2d1945a9a215e6 (7.3)
CVE-2024-47531 (Scout is a web-based visualizer for VCF-files. Due to the lack of sani ...)
TODO: check
CVE-2024-47530 (Scout is a web-based visualizer for VCF-files. Open redirect vulnerabi ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/43ab87f9ff1d5ff65fe7f198c3f8e69dda66eaef
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/43ab87f9ff1d5ff65fe7f198c3f8e69dda66eaef
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240930/fbb88c88/attachment.htm>
More information about the debian-security-tracker-commits
mailing list