Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 5bccd819 by Salvatore Bonaccorso at 2023-09-23T07:18:16+02:00 Mark one CVE as no-dsa as discussed in a related Debian bug Link: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043503#36 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -2906,6 +2906,8 @@ CVE-2023-41041 (Graylog is a free and open log management platform. In a multi-n - graylog2 <itp> (bug #652273) CVE-2023-41040 (GitPython is a python library used to interact with Git repositories. ...) - python-git 3.1.36-1 + [bookworm] - python-git <no-dsa> (Minor issue; can be fixed via point release) + [bullseye] - python-git <no-dsa> (Minor issue; can be fixed via point release) NOTE: https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c NOTE: Fixed by: https://github.com/gitpython-developers/GitPython/commit/64ebb9fcdfbe48d5d61141a557691fd91f1e88d6 (3.1.35) NOTE: Testcase: https://github.com/gitpython-developers/GitPython/commit/65b8c6a2ccacdf26e751cd3bc3c5a7c9e5796b56 (3.1.35) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5bccd819ac326416efa03b75454e8bbf24fa8f9a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5bccd819ac326416efa03b75454e8bbf24fa8f9a You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
