Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0d2f6694 by Salvatore Bonaccorso at 2024-07-10T11:14:38+02:00
Track fixed version via unstable for python-django
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -35,15 +35,15 @@ CVE-2024-39881 (Delta Electronics CNCSoft-G2 lacks proper
validation of user-sup
CVE-2024-39880 (Delta Electronics CNCSoft-G2 lacks proper validation of the
length of ...)
TODO: check
CVE-2024-39614 (An issue was discovered in Django 5.0 before 5.0.7 and 4.2
before 4.2. ...)
- - python-django <unfixed> (bug #1076069)
+ - python-django 3:4.2.14-1 (bug #1076069)
NOTE:
https://www.djangoproject.com/weblog/2024/jul/09/security-releases/
NOTE:
https://github.com/django/django/commit/17358fb35fb7217423d4c4877ccb6d1a3a40b1c3
(4.2.14)
CVE-2024-39330 (An issue was discovered in Django 5.0 before 5.0.7 and 4.2
before 4.2. ...)
- - python-django <unfixed> (bug #1076069)
+ - python-django 3:4.2.14-1 (bug #1076069)
NOTE:
https://www.djangoproject.com/weblog/2024/jul/09/security-releases/
NOTE:
https://github.com/django/django/commit/2b00edc0151a660d1eb86da4059904a0fc4e095e
(4.2.14)
CVE-2024-39329 (An issue was discovered in Django 5.0 before 5.0.7 and 4.2
before 4.2. ...)
- - python-django <unfixed> (bug #1076069)
+ - python-django 3:4.2.14-1 (bug #1076069)
NOTE:
https://www.djangoproject.com/weblog/2024/jul/09/security-releases/
NOTE:
https://github.com/django/django/commit/156d3186c96e3ec2ca73b8b25dc2ef366e38df14
(4.2.14)
CVE-2024-39181 (Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 was
discovered ...)
@@ -61,7 +61,7 @@ CVE-2024-38963 (Nopcommerce 4.70.1 is vulnerable to Cross
Site Scripting (XSS) v
CVE-2024-38959 (Cross Site Scripting vulnerability in Creativeitem Academy LMS
Learnin ...)
TODO: check
CVE-2024-38875 (An issue was discovered in Django 4.2 before 4.2.14 and 5.0
before 5.0 ...)
- - python-django <unfixed> (bug #1076069)
+ - python-django 3:4.2.14-1 (bug #1076069)
NOTE:
https://www.djangoproject.com/weblog/2024/jul/09/security-releases/
NOTE:
https://github.com/django/django/commit/79f368764295df109a37192f6182fb6f361d85b5
(4.2.14)
CVE-2024-38301 (Dell Alienware Command Center, version 5.7.3.0 and prior,
contains an ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0d2f66944a23f6ffbd5ce4798700ae0f5000df36
--
This project does not include diff previews in email notifications.
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0d2f66944a23f6ffbd5ce4798700ae0f5000df36
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
