Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
64490bff by Salvatore Bonaccorso at 2026-05-05T14:34:11+02:00
Add references as well for python3.14
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -24945,8 +24945,10 @@ CVE-2026-4519 (The webbrowser.open() API would accept
leading dashes in the URL
NOTE: Fixed by:
https://github.com/python/cpython/commit/96fc5048605863c7b6fd6289643feb0e97edd96c
(3.11 branch)
NOTE: Initial fix was incomplete (CVE-2026-4786), to fully address this
also needs:
NOTE:
https://github.com/python/cpython/commit/d22922c8a7958353689dc4763dd72da2dea03fff
(main)
- NOTE:
https://github.com/python/cpython/commit/d6d68494be70bdbda20f89f83801ba52ec37daa4
(3.13)
+ NOTE: https://github.com/python/cpython/pull/148516 (3.14)
+ NOTE:
https://github.com/python/cpython/commit/28b4ad38067bbdad34edfcd03ad2de5f06387e53
(v3.14.5rc1)
NOTE: https://github.com/python/cpython/pull/148517 (3.13)
+ NOTE:
https://github.com/python/cpython/commit/d6d68494be70bdbda20f89f83801ba52ec37daa4
(3.13)
NOTE:
https://github.com/python/cpython/commit/f4654824ae0850ac87227fb270f9057477946769
(3.11)
CVE-2026-4505 (A vulnerability has been found in eosphoros-ai DB-GPT up to
0.7.5. Thi ...)
NOT-FOR-US: eosphoros-ai DB-GPT
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64490bff72be619d16965a56a3ae96b62300d85f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64490bff72be619d16965a56a3ae96b62300d85f
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
