[Git][security-tracker-team/security-tracker][master] 2 commits: dla: pypy3 status update

Sylvain Beucler (@beuc) gitlab at salsa.debian.org
Mon Jan 19 18:35:25 GMT 2026 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
af742f61 by Sylvain Beucler at 2026-01-19T19:35:16+01:00
dla: pypy3 status update

- - - - -
a899af27 by Sylvain Beucler at 2026-01-19T19:35:18+01:00
CVE-2021-23336/python3.9: drop incorrect annotation

python3.9 fixed in unstable (before bullseye)
buster has python3.7, not python3.9

Fixes 257832880b1dae25b2c24adea9ae1c728cb8a9c2

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -441211,7 +441211,6 @@ CVE-2021-23336 (The package python/cpython from 0 and before 3.6.13, from 3.7.0
 	{DLA-3575-1 DLA-3164-1 DLA-2628-1 DLA-2619-1 DLA-2569-1}
 	- python-django 2:2.2.19-1 (bug #983090)
 	- python3.9 3.9.2-1
-	[buster] - python3.9 <ignored> (Will break existing applications, don't backport to released suites)
 	- python3.8 <removed>
 	- python3.7 <removed>
 	[buster] - python3.7 <ignored> (Will break existing applications, don't backport to released suites)


=====================================
data/dla-needed.txt
=====================================
@@ -324,6 +324,7 @@ pypy3 (Sylvain Beucler)
   NOTE: 20260102: Lots of postponed CVEs pile-up
   NOTE: 20260102: Consider fixing bookworm too (Beuc/front-desk)
   NOTE: 20260102: https://salsa.debian.org/lts-team/lts-updates-tasks/-/issues/274
+  NOTE: 20260102: No more sponsors for pypy/pypy3 in bullseye.
 --
 python-aiohttp
   NOTE: 20260106: Added by Front-Desk (lamby)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/b474c69a71ed6b9b5429771f69eddedabd19555b...a899af27e243d4c0a867c81b54f88f04a5b4bcb3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/b474c69a71ed6b9b5429771f69eddedabd19555b...a899af27e243d4c0a867c81b54f88f04a5b4bcb3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260119/87e2b143/attachment.htm>

More information about the debian-security-tracker-commits mailing list