[Git][security-tracker-team/security-tracker][master] simpleeval DSA
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Apr 20 19:59:48 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8ba1b7ab by Moritz Mühlenhoff at 2026-04-20T20:57:15+02:00
simpleeval DSA
- - - - -
2 changed files:
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[20 Apr 2026] DSA-6220-1 simpleeval - security update
+ {CVE-2026-32640}
+ [bookworm] - simpleeval 0.9.12-1+deb12u1
+ [trixie] - simpleeval 1.0.3-1+deb13u1
[19 Apr 2026] DSA-6219-1 pillow - security update
{CVE-2026-40192}
[trixie] - pillow 11.1.0-5+deb13u2
=====================================
data/dsa-needed.txt
=====================================
@@ -93,9 +93,6 @@ runc
rust-wasmtime
for CVE-2026-34987 CVE-2026-34971, rest would also be fine to ignore
--
-simpleeval (jmm)
- Mathias Behrle uploaded packages to be released
---
smb4k/oldstable
Inrusive to backport chnges to 3.1.7-1, queried maintainer for opinion on ignoring update
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ba1b7abb765efc5f3f8fd8d6a20eb59776545b1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ba1b7abb765efc5f3f8fd8d6a20eb59776545b1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260420/6a160f71/attachment.htm>
More information about the debian-security-tracker-commits
mailing list