[Git][security-tracker-team/security-tracker][master] Update references for CVE-2022-48566

Thu, 24 Aug 2023 21:14:49 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
4752e740 by Salvatore Bonaccorso at 2023-08-25T06:14:10+02:00
Update references for CVE-2022-48566

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -323,11 +323,15 @@ CVE-2022-48570 (Crypto++ through 8.4 contains a timing 
side channel in ECDSA sig
        NOTE: functionality reasons.
        TODO: check details on upstream fix (in 8.4?)
 CVE-2022-48566 (An issue was discovered in compare_digest in Lib/hmac.py in 
Python thr ...)
-       - python3.9 3.9.0~b4-1
+       - python3.9 3.9.1~rc1-1
        - python3.7 <removed>
        - python2.7 <removed>
        [bullseye] - python2.7 <ignored> (Unsupported in Bullseye, only 
included to build a few applications)
-       NOTE: 
https://github.com/python/cpython/commit/8183e11d87388e4e44e3242c42085b87a878f781
+       NOTE: https://bugs.python.org/issue40791
+       NOTE: 
https://github.com/python/cpython/commit/8183e11d87388e4e44e3242c42085b87a878f781
 (v3.9.0b2)
+       NOTE: 
https://github.com/python/cpython/commit/c1bbca5b004b3f74d240ef8a76ff445cc1a27efb
 (v3.9.1rc1)
+       NOTE: 
https://github.com/python/cpython/commit/db95802bdfac4d13db3e2a391ec7b9e2f8d92dbe
 (v3.7.10)
+       NOTE: 
https://github.com/python/cpython/commit/8bef9ebb1b88cfa4b2a38b93fe4ea22015d8254a
 (v3.6.13)
        NOTE: https://github.com/python/cpython/issues/84968
 CVE-2022-48565 (An XML External Entity (XXE) issue was discovered in Python 
through 3. ...)
        - python3.9 3.9.1~rc1-1



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4752e74074721769610f235cc1d637e8856793a4

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4752e74074721769610f235cc1d637e8856793a4
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to