Summary: | <dev-python/urllib3-1.26.4: Improper HTTPS certificate validation (CVE-2021-28363) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sam James <sam> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | mgorny, python |
Priority: | Normal | Keywords: | ALLARCHES |
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | A3 [glsa+ cve] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 835609 |
Description
Sam James
2021-03-15 18:53:25 UTC
Tell us when ready to stable. ping Sorry, thought you CC-ed arches when adding package list ;-). hppa stable amd64 arm arm64 ppc ppc64 s390 sparc x86 (ALLARCHES) done all arches done Please cleanup. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=ce9fd297c7434fbe409440a054bee6efd526ef41 commit ce9fd297c7434fbe409440a054bee6efd526ef41 Author: Michał Górny <mgorny@gentoo.org> AuthorDate: 2021-03-26 08:29:09 +0000 Commit: Michał Górny <mgorny@gentoo.org> CommitDate: 2021-03-26 09:41:30 +0000 dev-python/urllib3: Remove old Bug: https://bugs.gentoo.org/776421 Signed-off-by: Michał Górny <mgorny@gentoo.org> dev-python/urllib3/Manifest | 2 - dev-python/urllib3/urllib3-1.25.11.ebuild | 69 ---------------------------- dev-python/urllib3/urllib3-1.26.3-r1.ebuild | 71 ----------------------------- 3 files changed, 142 deletions(-) GLSA request filed. This issue was resolved and addressed in GLSA 202107-36 at https://security.gentoo.org/glsa/202107-36 by GLSA coordinator John Helmert III (ajak). |