Enrico Zini pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3fa795c7 by Enrico Zini at 2022-06-14T15:18:34+02:00
CVE-2022-29217 marked pyjwt as not affected in stretch
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10994,6 +10994,7 @@ CVE-2022-29218 (RubyGems is a package registry used to
supply software for the R
NOT-FOR-US: rubygems/rubygems.org
CVE-2022-29217 (PyJWT is a Python implementation of RFC 7519. PyJWT supports
multiple ...)
- pyjwt <unfixed> (bug #1011747)
+ [stretch] - pyjwt <not-affected> (Vulnerable code not present)
NOTE:
https://github.com/jpadilla/pyjwt/security/advisories/GHSA-ffqj-6fqr-9h24
NOTE:
https://github.com/jpadilla/pyjwt/commit/9c528670c455b8d948aff95ed50e22940d1ad3fc
(2.4.0)
NOTE: https://github.com/jpadilla/pyjwt/releases/tag/2.4.0
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fa795c7d6d1c1594394c00a77fc14fab6ade0d4
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fa795c7d6d1c1594394c00a77fc14fab6ade0d4
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
