subject:"Bug#1054428\: pdm\: CVE\-2023\-45805"

Bug#1054428: pdm: CVE-2023-45805

2024-11-08 Thread Boyuan Yang

Control: fixed -1 2.20.0.post1+ds1-1 On Mon, 23 Oct 2023 20:21:19 +0200 Moritz Mühlenhoff wrote: Source: pdm X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for pdm. CVE-2023-45805[0]: | pdm is a Python package and depen

Bug#1054428: pdm: CVE-2023-45805

2023-10-23 Thread Moritz Mühlenhoff

Source: pdm X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for pdm. CVE-2023-45805[0]: | pdm is a Python package and dependency manager supporting the latest | PEP standards. It's possible to craft a malicious `pdm.lock` fi