Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 4752e740 by Salvatore Bonaccorso at 2023-08-25T06:14:10+02:00 Update references for CVE-2022-48566 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -323,11 +323,15 @@ CVE-2022-48570 (Crypto++ through 8.4 contains a timing side channel in ECDSA sig NOTE: functionality reasons. TODO: check details on upstream fix (in 8.4?) CVE-2022-48566 (An issue was discovered in compare_digest in Lib/hmac.py in Python thr ...) - - python3.9 3.9.0~b4-1 + - python3.9 3.9.1~rc1-1 - python3.7 <removed> - python2.7 <removed> [bullseye] - python2.7 <ignored> (Unsupported in Bullseye, only included to build a few applications) - NOTE: https://github.com/python/cpython/commit/8183e11d87388e4e44e3242c42085b87a878f781 + NOTE: https://bugs.python.org/issue40791 + NOTE: https://github.com/python/cpython/commit/8183e11d87388e4e44e3242c42085b87a878f781 (v3.9.0b2) + NOTE: https://github.com/python/cpython/commit/c1bbca5b004b3f74d240ef8a76ff445cc1a27efb (v3.9.1rc1) + NOTE: https://github.com/python/cpython/commit/db95802bdfac4d13db3e2a391ec7b9e2f8d92dbe (v3.7.10) + NOTE: https://github.com/python/cpython/commit/8bef9ebb1b88cfa4b2a38b93fe4ea22015d8254a (v3.6.13) NOTE: https://github.com/python/cpython/issues/84968 CVE-2022-48565 (An XML External Entity (XXE) issue was discovered in Python through 3. ...) - python3.9 3.9.1~rc1-1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4752e74074721769610f235cc1d637e8856793a4 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4752e74074721769610f235cc1d637e8856793a4 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits