[Git][security-tracker-team/security-tracker][master] 3 commits: Reserve DLA-4532-1 for python3.9

Arnaud Rebillout (@arnaudr) arnaudr at debian.org
Wed Apr 15 04:25:13 BST 2026 


Arnaud Rebillout pushed to branch master at Debian Security Tracker / security-tracker


Commits:
be03133d by Arnaud Rebillout at 2026-04-15T10:15:50+07:00
Reserve DLA-4532-1 for python3.9

- - - - -
a8be0de1 by Arnaud Rebillout at 2026-04-15T10:18:09+07:00
Remove CVE-2025-15366 CVE-2025-15367 from DLA-4455-1 (Jan 2026)

The patches for those 2 CVEs are reverted in python3.9 3.9.2-1+deb11u6,
(corresponding announcement: DLA-4532-1)

- - - - -
e34f5fe6 by Arnaud Rebillout at 2026-04-15T10:23:47+07:00
Mention revert for CVE-2025-15366 and CVE-2025-15367

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
Binary files a/data/CVE/list and b/data/CVE/list differ


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[15 Apr 2026] DLA-4532-1 python3.9 - security update
+	{CVE-2026-6100}
+	[bullseye] - python3.9 3.9.2-1+deb11u6
 [14 Apr 2026] DLA-4531-1 gdk-pixbuf - security update
 	{CVE-2026-5201}
 	[bullseye] - gdk-pixbuf 2.42.2+dfsg-1+deb11u5
@@ -222,7 +225,7 @@
 	{CVE-2026-21925 CVE-2026-21932 CVE-2026-21933 CVE-2026-21945}
 	[bullseye] - openjdk-17 17.0.18+8-1~deb11u1
 [25 Jan 2026] DLA-4455-1 python3.9 - security update
-	{CVE-2025-11468 CVE-2025-12084 CVE-2025-15282 CVE-2025-15366 CVE-2025-15367 CVE-2026-0672 CVE-2026-0865 CVE-2026-1299}
+	{CVE-2025-11468 CVE-2025-12084 CVE-2025-15282 CVE-2026-0672 CVE-2026-0865 CVE-2026-1299}
 	[bullseye] - python3.9 3.9.2-1+deb11u5
 [25 Jan 2026] DLA-4454-1 libuev - security update
 	{CVE-2022-48620}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/e22f51d7c507add5246acbade78db97d9d5175f7...e34f5fe6ad68f9c54a57a5b66243c3f006dd4f30

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/e22f51d7c507add5246acbade78db97d9d5175f7...e34f5fe6ad68f9c54a57a5b66243c3f006dd4f30
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260415/5c4c2295/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list