Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dc63d658 by Salvatore Bonaccorso at 2026-07-07T19:08:04+02:00
Track fixed version for python-django via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
CVE-2026-53878 [Header injection possibility since DomainNameValidator
accepted newlines in input]
- - python-django <unfixed> (bug #1141629)
+ - python-django 3:5.2.16-1 (bug #1141629)
NOTE:
https://www.djangoproject.com/weblog/2026/jul/07/security-releases/
NOTE: Fixed by:
https://github.com/django/django/commit/d5d60ed0323cddaa0ce0237a26a3d49ac21ee05e
(5.2.16)
CVE-2026-53877 [Heap buffer over-read in GDALRaster]
- - python-django <unfixed> (bug #1141629)
+ - python-django 3:5.2.16-1 (bug #1141629)
NOTE:
https://www.djangoproject.com/weblog/2026/jul/07/security-releases/
NOTE: Fixed by:
https://github.com/django/django/commit/6c66eb8cec52b303af85c2c6e4dd00aa37654dbc
(5.2.16)
CVE-2026-48588 [Potential exposure of private data via cached Set-Cookie
response]
- - python-django <unfixed> (bug #1141629)
+ - python-django 3:5.2.16-1 (bug #1141629)
NOTE:
https://www.djangoproject.com/weblog/2026/jul/07/security-releases/
NOTE: Fixed by:
https://github.com/django/django/commit/721685aa7799cc9327bd202cd1f70bd012ca95a7
(5.2.16)
CVE-2026-XXXX [InspIRCd Security Advisory 2026-01]
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dc63d65839cae225c0ab36a4fc8398b9cac47101
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dc63d65839cae225c0ab36a4fc8398b9cac47101
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits