[Git][security-tracker-team/security-tracker][master] Track fixed version for nbconvert issues fixed via unstable

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Apr 27 08:19:32 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1bd2bcf2 by Salvatore Bonaccorso at 2026-04-27T09:18:57+02:00
Track fixed version for nbconvert issues fixed via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3579,11 +3579,11 @@ CVE-2026-39388 (OpenBao is an open source identity-based secrets management syst
 CVE-2026-39386 (Neko is a a self-hosted virtual browser that runs in Docker and uses W ...)
 	NOT-FOR-US: Neko
 CVE-2026-39378 (The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to v ...)
-	- nbconvert <unfixed> (bug #1134890)
+	- nbconvert 7.17.1-1 (bug #1134890)
 	NOTE: https://github.com/jupyter/nbconvert/security/advisories/GHSA-7jqv-fw35-gmx9
 	NOTE: Fixed by: https://github.com/jupyter/nbconvert/commit/0e6b8ccabf2aca6c18fac8c574f22b7155f441fb (v7.17.1)
 CVE-2026-39377 (The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to v ...)
-	- nbconvert <unfixed> (bug #1134889)
+	- nbconvert 7.17.1-1 (bug #1134889)
 	[bookworm] - nbconvert <not-affected> (Vulnerable code introduced later)
 	[bullseye] - nbconvert <not-affected> (Vulnerable code introduced later)
 	NOTE: https://github.com/jupyter/nbconvert/security/advisories/GHSA-4c99-qj7h-p3vg



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1bd2bcf26491c33521d1436c75b1d5aec5bf24f3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1bd2bcf26491c33521d1436c75b1d5aec5bf24f3
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260427/a8bc0510/attachment.htm>

More information about the debian-security-tracker-commits mailing list