Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 27 May 2024 14:13:59 +0000
From:      bugzilla-noreply@freebsd.org
To:        ports-bugs@FreeBSD.org
Subject:   [Bug 279351] www/py-requests vulnerable GHSA-9wx4-h78v-vm56 CVE-2024-35195 please update
Message-ID:  <bug-279351-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help 
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D279351

            Bug ID: 279351
           Summary: www/py-requests vulnerable GHSA-9wx4-h78v-vm56
                    CVE-2024-35195 please update
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: sunpoet@FreeBSD.org
          Reporter: void@f-m.fm
          Assignee: sunpoet@FreeBSD.org
             Flags: maintainer-feedback?(sunpoet@FreeBSD.org)

Hi,

https://github.com/psf/requests/security/advisories/GHSA-9wx4-h78v-vm56
https://nvd.nist.gov/vuln/detail/CVE-2024-35195

www/py-requests in ports is 2.31.0_1. Fix is available in 2.32.0, please
update.

The vuln isn't listed in vulnxml.

--=20
You are receiving this mail because:
You are the assignee for the bug.=

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-279351-7788>