[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-28858/python-redis
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Apr 10 19:37:22 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0ebe3061 by Salvatore Bonaccorso at 2025-04-10T20:35:55+02:00
Track fixed version for CVE-2023-28858/python-redis
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -177401,7 +177401,7 @@ CVE-2023-28859 (redis-py before 4.4.4 and 4.5.x before 4.5.4 leaves a connection
NOTE: https://github.com/redis/redis-py/issues/2665
NOTE: https://github.com/redis/redis-py/pull/2641
CVE-2023-28858 (redis-py before 4.5.3 leaves a connection open after canceling an asyn ...)
- - python-redis <unfixed> (bug #1033754)
+ - python-redis 5.2.1-1 (bug #1033754)
[bookworm] - python-redis <postponed> (Minor issue, revisit when fixed upstream)
[bullseye] - python-redis <not-affected> (Vulnerable code not present)
[buster] - python-redis <not-affected> (Vulnerable code introduced later)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0ebe30618604150a65c27d49342bdd794c62156c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0ebe30618604150a65c27d49342bdd794c62156c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250410/e1040b9c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list