[Git][security-tracker-team/security-tracker][master] lts: CVE-2024-42367/python-aiohttp mark bullseye not-affected
Jochen Sprickerhof (@jspricke)
jspricke at debian.org
Mon Feb 3 12:28:24 GMT 2025
Jochen Sprickerhof pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f73b4c41 by Jochen Sprickerhof at 2025-02-03T13:26:07+01:00
lts: CVE-2024-42367/python-aiohttp mark bullseye not-affected
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -47656,6 +47656,7 @@ CVE-2024-42370 (Litestar is an Asynchronous Server Gateway Interface (ASGI) fram
CVE-2024-42367 (aiohttp is an asynchronous HTTP client/server framework for asyncio an ...)
- python-aiohttp 3.10.3-2
[bookworm] - python-aiohttp <no-dsa> (Minor issue)
+ [bullseye] - python-aiohttp <not-affected> (vulnerable code introduced in 3.9.2)
NOTE: https://github.com/aio-libs/aiohttp/security/advisories/GHSA-jwhx-xcg6-8xhj
NOTE: https://github.com/aio-libs/aiohttp/pull/8653
NOTE: https://github.com/aio-libs/aiohttp/commit/ce2e9758814527589b10759a20783fb03b98339f (v3.10.2)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f73b4c41e8923a95d3fe2b7981fb5053b7f99f57
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f73b4c41e8923a95d3fe2b7981fb5053b7f99f57
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250203/3493201a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list