Ubuntu has issued an advisory on May 13: https://ubuntu.com/security/notices/USN-6771-1 Mageia 9 is also affected.
Whiteboard: (none) => MGA9TOOStatus comment: (none) => Patch available from UbuntuCVE: (none) => CVE-2024-4340Source RPM: (none) => python-sqlparse-0.4.4-2.mga10.src.rpm
This looks like the patch: https://github.com/andialbrecht/sqlparse/commit/b4a39d9850969b4e1d6940d32094ee0b42a2cf03 Assigning to Python stack.
Assignee: bugsquad => python
Fixed for Cauldron!
CC: (none) => geiger.david68210Version: Cauldron => 9Whiteboard: MGA9TOO => (none)
Assigning to QA, Packages in 9/Core/Updates_testing: ====================== python3-sqlparse-0.4.4-1.1.mga9.noarch.rpm From SRPMS: python-sqlparse-0.4.4-1.1.mga9.src.rpm
Assignee: python => qa-bugs
Keywords: (none) => advisory
RH mageia 9 x86_64 LC_ALL=C urpmi python3-sqlparse https://mirror.math.princeton.edu/pub/mageia/distrib/9/x86_64/media/core/release/python3-sqlparse-0.4.4-1.mga9.noarch.rpm installing python3-sqlparse-0.4.4-1.mga9.noarch.rpm from /var/cache/urpmi/rpms Preparing... ################################################################################################## 1/1: python3-sqlparse ################################################################################################## LC_ALL=C urpmi --auto --auto-update medium "QA Testing (32-bit)" is up-to-date medium "QA Testing (64-bit)" is up-to-date medium "Core Release (distrib1)" is up-to-date medium "Core Updates (distrib3)" is up-to-date medium "Nonfree Release (distrib11)" is up-to-date medium "Nonfree Updates (distrib13)" is up-to-date medium "Tainted Release (distrib21)" is up-to-date medium "Tainted Updates (distrib23)" is up-to-date medium "Core 32bit Release (distrib31)" is up-to-date medium "Core 32bit Updates (distrib32)" is up-to-date medium "Nonfree 32bit Release (distrib36)" is up-to-date medium "Tainted 32bit Release (distrib41)" is up-to-date medium "Tainted 32bit Updates (distrib42)" is up-to-date installing python3-sqlparse-0.4.4-1.1.mga9.noarch.rpm from //home/katnatek/qa-testing/x86_64 Preparing... ################################################################################################## 1/1: python3-sqlparse ################################################################################################## 1/1: removing python3-sqlparse-0.4.4-1.mga9.noarch ################################################################################################## LC_ALL=C urpme python3-sqlparse removing python3-sqlparse-0.4.4-1.1.mga9.noarch removing package python3-sqlparse-0.4.4-1.1.mga9.noarch 1/1: removing python3-sqlparse-0.4.4-1.1.mga9.noarch ################################################################################################## Give OK in base a clean install/unistall
Whiteboard: (none) => MGA9-64-OKCC: (none) => andrewsfarm
Validating.
Keywords: (none) => validated_updateCC: (none) => sysadmin-bugs
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2024-0185.html
Status: NEW => RESOLVEDResolution: (none) => FIXED