pkgsrc-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: pkgsrc/doc
Module Name: pkgsrc
Committed By: wiz
Date: Sun Oct 5 07:26:27 UTC 2025
Modified Files:
pkgsrc/doc: pkg-vulnerabilities
Log Message:
doc: update py-pip pattern
according to https://github.com/pypa/pip/issues/13607
this is fixed in Python >=3.9.17, >=3.10.12, >=3.11.4, or >=3.12
which are versions from 2023; restrict this to Python 2.7.
To generate a diff of this commit:
cvs rdiff -u -r1.579 -r1.580 pkgsrc/doc/pkg-vulnerabilities
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.579 pkgsrc/doc/pkg-vulnerabilities:1.580
--- pkgsrc/doc/pkg-vulnerabilities:1.579 Sat Oct 4 21:20:11 2025
+++ pkgsrc/doc/pkg-vulnerabilities Sun Oct 5 07:26:26 2025
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.579 2025/10/04 21:20:11 leot Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.580 2025/10/05 07:26:26 wiz Exp $
#
#FORMAT 1.0.0
#
@@ -27667,7 +27667,7 @@ openssl<3.5.4 timing-side-channel https:
openssl<3.5.4 out-of-bounds-write https://nvd.nist.gov/vuln/detail/CVE-2025-9232
podman-[0-9]* file-permissions https://nvd.nist.gov/vuln/detail/CVE-2025-4953
py{27,39,310,311,312,313}-authlib<1.6.4 security-bypass https://nvd.nist.gov/vuln/detail/CVE-2025-59420
-py{27,39,310,311,312,313}-pip-[0-9]* symlink-attack https://nvd.nist.gov/vuln/detail/CVE-2025-8869
+py27-pip-[0-9]* symlink-attack https://nvd.nist.gov/vuln/detail/CVE-2025-8869
py{27,39,310,311,312,313}-jupyterlab<4.4.8 input-validation https://nvd.nist.gov/vuln/detail/CVE-2025-59842
py{27,39,310,311,312,313}-torch<2.8.0 incorrect-calculation https://nvd.nist.gov/vuln/detail/CVE-2025-46148
py{27,39,310,311,312,313}-torch<2.7.0 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2025-46149
Home |
Main Index |
Thread Index |
Old Index