Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
84779d3a by Salvatore Bonaccorso at 2019-06-08T12:44:48Z
Mark CVE-2019-10160/python2.7 for stretch as not-affected
We did not fix CVE-2019-9636 yet for stretch and thus no incomplete fix
for CVE-2019-9636 was applied. An update in stretch should just contain
the whole patchsets needed.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6366,6 +6366,7 @@ CVE-2019-10160 (A security regression of CVE-2019-9636
was discovered in python
- python3.5 <not-affected> (Incomplete fix for CVE-2019-9636 not
applied)
- python3.4 <not-affected> (Incomplete fix for CVE-2019-9636 not
applied)
- python2.7 <unfixed>
+ [stretch] - python2.7 <not-affected> (Incomplete fix for CVE-2019-9636
not applied)
NOTE: Introduced by:
https://github.com/python/cpython/commit/d537ab0ff9767ef024f26246899728f0116b1ec3
(v3.8.0a4)
NOTE: Fixed by:
https://github.com/python/cpython/commit/8d0ef0b5edeae52960c7ed05ae8a12388324f87e
(v3.8.0b1)
NOTE:
https://github.com/python/cpython/commit/250b62acc59921d399f0db47db3b462cd6037e09
(3.7)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/84779d3a1af626f222e3ce247be17e8de09c9d7d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/84779d3a1af626f222e3ce247be17e8de09c9d7d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
