[Git][security-tracker-team/security-tracker][master] Associate CVE-2023-41419 with python-gevent
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Nov 14 22:03:41 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d38b157d by Salvatore Bonaccorso at 2025-11-14T23:02:35+01:00
Associate CVE-2023-41419 with python-gevent
The CVE was misstriaged as NFU and is for python-gevent.
Thanks: Marc Deslauriers
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -224718,7 +224718,9 @@ CVE-2023-41867 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Ac
CVE-2023-41863 (Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Pepro Dev. ...)
NOT-FOR-US: WordPress plugin
CVE-2023-41419 (An issue in Gevent before version 23.9.0 allows a remote attacker to e ...)
- NOT-FOR-US: Gevent Gevent
+ - python-gevent 23.9.1-0.1
+ NOTE: https://github.com/gevent/gevent/issues/1989
+ NOTE: Fixed by: https://github.com/gevent/gevent/commit/2f53c851eaf926767fbac62385615efd4886221c (23.9.0)
CVE-2023-41303 (Command injection vulnerability in the distributed file system module. ...)
NOT-FOR-US: Huawei
CVE-2023-41302 (Redirection permission verification vulnerability in the home screen m ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d38b157d3dadf0850068c147a2383e846c419c75
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d38b157d3dadf0850068c147a2383e846c419c75
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251114/54c136bd/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list