Re: pyjwt CVE-2022-29217 and stretch

To: Anton Gladky <gladk@debian.org>
Cc: Debian Security Team <team@security.debian.org>, Debian LTS <debian-lts@lists.debian.org>
Subject: Re: pyjwt CVE-2022-29217 and stretch
From: Enrico Zini <enrico@enricozini.org>
Date: Tue, 14 Jun 2022 15:26:33 +0200
Message-id: <[🔎] 20220614132633.xd4ul3zwlb5ychbn@enricozini.org>
In-reply-to: <[🔎] CALF6qJn34GWB8TRt+g19VFJJMfB7+S7DBLYz0M45U0FfZcUnCQ@mail.gmail.com>
References: <[🔎] 20220610102343.6o3ak3ehc3jdofps@enricozini.org> <[🔎] CALF6qJn34GWB8TRt+g19VFJJMfB7+S7DBLYz0M45U0FfZcUnCQ@mail.gmail.com>

On Fri, Jun 10, 2022 at 11:07:42PM +0200, Anton Gladky wrote:

> If you feel that the patch is too destructive or something similar
> that preserves
> a fix for this particular CVE, so the <ignored> tag is more appropriate with
> corresponding comment.

I looked around and marked it as <not-affected>, since the relevant code
was only introduced in a later version


Enrico

-- 
GPG key: 4096R/634F4BD1E7AD5568 2009-05-08 Enrico Zini <enrico@enricozini.org>

Attachment: signature.asc
Description: PGP signature

Reply to:

References:
- pyjwt CVE-2022-29217 and stretch
  - From: Enrico Zini <enrico@enricozini.org>
- Re: pyjwt CVE-2022-29217 and stretch
  - From: Anton Gladky <gladk@debian.org>

Prev by Date: Re: pyjwt CVE-2022-29217 and stretch
Next by Date: ckeditor4 security update
Previous by thread: Re: pyjwt CVE-2022-29217 and stretch
Next by thread: ckeditor4 security update
Index(es):
- Date
- Thread