Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d38b157d by Salvatore Bonaccorso at 2025-11-14T23:02:35+01:00
Associate CVE-2023-41419 with python-gevent
The CVE was misstriaged as NFU and is for python-gevent.
Thanks: Marc Deslauriers
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -224718,7 +224718,9 @@ CVE-2023-41867 (Unauth. Reflected Cross-Site
Scripting (XSS) vulnerability in Ac
CVE-2023-41863 (Unauth. Stored Cross-Site Scripting (XSS) vulnerability in
Pepro Dev. ...)
NOT-FOR-US: WordPress plugin
CVE-2023-41419 (An issue in Gevent before version 23.9.0 allows a remote
attacker to e ...)
- NOT-FOR-US: Gevent Gevent
+ - python-gevent 23.9.1-0.1
+ NOTE: https://github.com/gevent/gevent/issues/1989
+ NOTE: Fixed by:
https://github.com/gevent/gevent/commit/2f53c851eaf926767fbac62385615efd4886221c
(23.9.0)
CVE-2023-41303 (Command injection vulnerability in the distributed file system
module. ...)
NOT-FOR-US: Huawei
CVE-2023-41302 (Redirection permission verification vulnerability in the home
screen m ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d38b157d3dadf0850068c147a2383e846c419c75
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d38b157d3dadf0850068c147a2383e846c419c75
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
