Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
00cbcfb1 by Salvatore Bonaccorso at 2026-07-09T10:25:06+02:00
Add two new pypdf issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -46,9 +46,17 @@ CVE-2026-59939 (httplib2 is a comprehensive HTTP client
library for Python. Prio
NOTE:
https://github.com/httplib2/httplib2/security/advisories/GHSA-j5g9-f88f-gfj3
NOTE: Fixed by:
https://github.com/httplib2/httplib2/commit/87581ad6cf752fe3da2090c59058261d2d00a427
(v0.32.0)
CVE-2026-59936 (pypdf is a free and open-source pure-python PDF library. Prior
to 6.14 ...)
- TODO: check
+ - pypdf <unfixed>
+ - pypdf2 <removed>
+ NOTE:
https://github.com/py-pdf/pypdf/security/advisories/GHSA-5xf7-4p34-54qr
+ NOTE: https://github.com/py-pdf/pypdf/pull/3891
+ NOTE: Fixed by:
https://github.com/py-pdf/pypdf/commit/ec3b14596186c40caca7cf8ab9b2155203e01b5b
(6.14.1)
CVE-2026-59935 (pypdf is a free and open-source pure-python PDF library. Prior
to 6.14 ...)
- TODO: check
+ - pypdf <unfixed>
+ - pypdf2 <removed>
+ NOTE:
https://github.com/py-pdf/pypdf/security/advisories/GHSA-g867-7843-wf8q
+ NOTE: https://github.com/py-pdf/pypdf/pull/3892
+ NOTE: Fixed by:
https://github.com/py-pdf/pypdf/commit/5a33a46416aa1ae6c025ff90a3cca57631fdafd2
(6.14.2)
CVE-2026-59822 (LiteLLM is a proxy server (AI Gateway) to call LLM APIs in
OpenAI (or ...)
NOT-FOR-US: LiteLLM
CVE-2026-59821 (LiteLLM is a proxy server (AI Gateway) to call LLM APIs in
OpenAI (or ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00cbcfb10f3f442d729cd9dc8b000043d415e927
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00cbcfb10f3f442d729cd9dc8b000043d415e927
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits