Please fix Debian bug 1032091 "py7zr: CVE-2022-44900"

To: debian-python@lists.debian.org
Subject: Please fix Debian bug 1032091 "py7zr: CVE-2022-44900"
From: yokota <yokota.hgml@gmail.com>
Date: Fri, 24 Mar 2023 08:32:34 +0900
Message-id: <[🔎] CA+0c0dUq9vK+2kO9+=FayPRa=oUKcFkhGXsJgxU1YWrj7iv3ig@mail.gmail.com>

Hello, Python maintainers.

Debian "py7zr" package has security issue CVE-2022-44900,
and this issue affects Debian "calibre" package because "calibre" depends
this "py7zr" module.
  https://tracker.debian.org/pkg/py7zr

Please examine Debian bug report 1032091, and fix this issue.
  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1032091

Debian release system will auto-remove these packages from testing distribution
on Wed 12 Apr 2023.

Thanks,
--
YOKOTA Hiroshi

Reply to:

Follow-Ups:
- Re: Please fix Debian bug 1032091 "py7zr: CVE-2022-44900"
  - From: Sandro Tosi <morph@debian.org>

Prev by Date: Re: Python pybuild system & setup.cfg
Next by Date: Re: Please fix Debian bug 1032091 "py7zr: CVE-2022-44900"
Previous by thread: Re: Python pybuild system & setup.cfg
Next by thread: Re: Please fix Debian bug 1032091 "py7zr: CVE-2022-44900"
Index(es):
- Date
- Thread