[Git][security-tracker-team/security-tracker][master] Add two new python-urllib3 issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jun 19 23:28:54 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e72f3ecf by Salvatore Bonaccorso at 2025-06-20T00:28:18+02:00
Add two new python-urllib3 issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -69,9 +69,13 @@ CVE-2025-50201 (WeGIA is a web manager for charitable institutions. Prior to ver
 CVE-2025-50183 (OpenList Frontend is a UI component for OpenList. Prior to version 4.0 ...)
 	NOT-FOR-US: OpenList Frontend
 CVE-2025-50182 (urllib3 is a user-friendly HTTP client library for Python. Prior to 2. ...)
-	TODO: check
+	- python-urllib3 <unfixed>
+	NOTE: https://github.com/urllib3/urllib3/security/advisories/GHSA-48p4-8xcf-vxj5
+	NOTE: https://github.com/urllib3/urllib3/commit/7eb4a2aafe49a279c29b6d1f0ed0f42e9736194f (2.5.0)
 CVE-2025-50181 (urllib3 is a user-friendly HTTP client library for Python. Prior to 2. ...)
-	TODO: check
+	- python-urllib3 <unfixed>
+	NOTE: https://github.com/urllib3/urllib3/security/advisories/GHSA-pq67-6m6q-mj2v
+	NOTE: https://github.com/urllib3/urllib3/commit/f05b1329126d5be6de501f9d1e3e36738bc08857 (2.5.0)
 CVE-2025-4965 (The WPBakery Page Builder for WordPress plugin for WordPress is vulner ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-4661 (A path transversal vulnerability in  Brocade Fabric OS 9.1.0 through 9 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e72f3ecf8dec66545a491b8df25c9d1a2882629c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e72f3ecf8dec66545a491b8df25c9d1a2882629c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250619/5691af06/attachment.htm>

More information about the debian-security-tracker-commits mailing list