[Git][security-tracker-team/security-tracker][master] tornado fixed in sid
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Jan 7 12:20:44 GMT 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9746dd23 by Moritz Muehlenhoff at 2026-01-07T13:20:06+01:00
tornado fixed in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -11539,15 +11539,15 @@ CVE-2025-67728 (Fireshare facilitates self-hosted media and link sharing. Versio
CVE-2025-67727 (Parse Server is an open source backend that can be deployed to any inf ...)
NOT-FOR-US: Parse Server
CVE-2025-67726 (Tornado is a Python web framework and asynchronous networking library. ...)
- - python-tornado <unfixed> (bug #1122663)
+ - python-tornado 6.5.4-0.1 (bug #1122663)
NOTE: https://github.com/tornadoweb/tornado/security/advisories/GHSA-jhmp-mqwm-3gq8
NOTE: Fixed by: https://github.com/tornadoweb/tornado/commit/771472cfdaeebc0d89a9cc46e249f8891a6b29cd (v6.5.3)
CVE-2025-67725 (Tornado is a Python web framework and asynchronous networking library. ...)
- - python-tornado <unfixed> (bug #1122661)
+ - python-tornado 6.5.4-0.1 (bug #1122661)
NOTE: https://github.com/tornadoweb/tornado/security/advisories/GHSA-c98p-7wgm-6p64
NOTE: Fixed by: https://github.com/tornadoweb/tornado/commit/771472cfdaeebc0d89a9cc46e249f8891a6b29cd (v6.5.3)
CVE-2025-67724 (Tornado is a Python web framework and asynchronous networking library. ...)
- - python-tornado <unfixed> (bug #1122660)
+ - python-tornado 6.5.4-0.1 (bug #1122660)
NOTE: https://github.com/tornadoweb/tornado/security/advisories/GHSA-pr2v-jx2c-wg9f
NOTE: Fixed by: https://github.com/tornadoweb/tornado/commit/9c163aebeaad9e6e7d28bac1f33580eb00b0e421 (v6.5.3)
CVE-2025-67508 (gardenctl is a command-line client for the Gardener which configures a ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9746dd23ecb939d4d7bfe61a31022bd79d9119ad
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9746dd23ecb939d4d7bfe61a31022bd79d9119ad
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260107/f2b5bd67/attachment.htm>
More information about the debian-security-tracker-commits
mailing list