Bug 30885 - python-oauthlib new security issue CVE-2022-36087
Summary: python-oauthlib new security issue CVE-2022-36087
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: All Linux
Priority: Normal major
Target Milestone: ---
Assignee: Python Stack Maintainers
QA Contact: Sec team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2022-09-23 18:12 CEST by David Walser
Modified: 2022-09-24 10:54 CEST (History)
1 user (show)

See Also:
Source RPM: python-oauthlib-3.2.0-2.mga9.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2022-09-23 18:12:40 CEST 
Ubuntu has issued an advisory on September 22:
https://ubuntu.com/security/notices/USN-5632-1

The issue is fixed upstream in 3.2.1.
Comment 1 Lewis Smith 2022-09-23 20:34:31 CEST 
Assigning this globally as unsure of the currency of the previous maintainer.

Assignee: bugsquad => pkg-bugs

David Walser 2022-09-23 20:36:36 CEST

Assignee: pkg-bugs => python

Comment 2 papoteur 2022-09-24 10:54:21 CEST 
Done in cauldron.
I understand that Mageia 8 is not affected. Thus closing.

Status: NEW => RESOLVED
Resolution: (none) => FIXED
CC: (none) => yves.brungard_mageia
Note You need to log in before you can comment on or make changes to this bug.