[Git][security-tracker-team/security-tracker][master] Reserve DLA-4418-1 for python-mechanize

Daniel Leidert (@dleidert) dleidert at debian.org
Mon Dec 22 00:05:18 GMT 2025 


Daniel Leidert pushed to branch master at Debian Security Tracker / security-tracker


Commits:
628f6f44 by Daniel Leidert at 2025-12-22T01:05:04+01:00
Reserve DLA-4418-1 for python-mechanize

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -404128,7 +404128,6 @@ CVE-2021-32838 (Flask-RESTX (pypi package flask-restx) is a community driven for
 CVE-2021-32837 (mechanize, a library for automatically interacting with HTTP web serve ...)
 	{DLA-3460-1}
 	- python-mechanize 1:0.4.7-1
-	[bullseye] - python-mechanize <no-dsa> (Minor issue)
 	NOTE: https://securitylab.github.com/advisories/GHSL-2021-108-python-mechanize-mechanize/
 	NOTE: https://github.com/python-mechanize/mechanize/commit/dd05334448e9f39814bab044d2eaa5ef69b410d6 (v0.4.6)
 CVE-2021-32836 (ZStack is open source IaaS(infrastructure as a service) software. In Z ...)


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[22 Dec 2025] DLA-4418-1 python-mechanize - security update
+	{CVE-2021-32837}
+	[bullseye] - python-mechanize 1:0.4.5-2+deb11u1
 [22 Dec 2025] DLA-4417-1 usbmuxd - security update
 	{CVE-2025-66004}
 	[bullseye] - usbmuxd 1.1.1-2+deb11u1


=====================================
data/dla-needed.txt
=====================================
@@ -338,9 +338,6 @@ python-django (Chris Lamb)
   NOTE: 20251106: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1079454
   NOTE: 20251212: Working on postponed CVEs. (lamby)
 --
-python-mechanize (dleidert)
-  NOTE: 20251206: Added by Front-Desk. Avoid a regression from buster (rouca)
---
 python-tornado (dleidert)
   NOTE: 20251214: Added by Front-Desk (dleidert)
   NOTE: 20251222: WIP (dleidert)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/628f6f440b7103ab85a67af6398b38f8a7460b3e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/628f6f440b7103ab85a67af6398b38f8a7460b3e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251222/d3ac5e09/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list