[Bug 278326] dns/py-idna (py39-idna-3.6) is vulnerable: CVE-2024-3651 GHSA-jjg7-2v4v-x38h

Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Fri, 12 Apr 2024 09:53:31 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=278326

            Bug ID: 278326
           Summary: dns/py-idna (py39-idna-3.6) is vulnerable:
                    CVE-2024-3651  GHSA-jjg7-2v4v-x38h
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Some People
          Priority: ---
         Component: Individual Port(s)
          Assignee: sunpoet@FreeBSD.org
          Reporter: void@f-m.fm
          Assignee: sunpoet@FreeBSD.org
             Flags: maintainer-feedback?(sunpoet@FreeBSD.org)

Hi,

dns/py-idna (py39-idna-3.6) is vulnerable. Missing from vulnxml. Fixed in 3.7.
Please update.

https://github.com/kjd/idna/security/advisories/GHSA-jjg7-2v4v-x38h

-- 
You are receiving this mail because:
You are the assignee for the bug.