[Bug 285304] py-python-json-logger: update to v3.3.0 due to security issue

Reply: bugzilla-noreply_a_freebsd.org: "[Bug 285304] devel/py-python-json-logger: update to v3.3.0 due to security issue"
Reply: bugzilla-noreply_a_freebsd.org: "[Bug 285304] devel/py-python-json-logger: update to v3.3.0 due to security issue"
Reply: bugzilla-noreply_a_freebsd.org: "[Bug 285304] devel/py-python-json-logger: update to v3.3.0 due to security issue"
Reply: bugzilla-noreply_a_freebsd.org: "[Bug 285304] devel/py-python-json-logger: update to v3.3.0 due to security issue"
Reply: bugzilla-noreply_a_freebsd.org: "[Bug 285304] devel/py-python-json-logger: update to v3.3.0 due to security issue"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Mon, 10 Mar 2025 10:16:12 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=285304

            Bug ID: 285304
           Summary: py-python-json-logger: update to v3.3.0 due to
                    security issue
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Many People
          Priority: ---
         Component: Individual Port(s)
          Assignee: ports-bugs@FreeBSD.org
          Reporter: rodrigo@FreeBSD.org

Created attachment 258529
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=258529&action=edit
vuxml update

Between 30 December 2024 and 4 March 2025 Python JSON Logger was vulnerable to
RCE through a missing dependency.
A new version v3.3.0 is available

https://nvd.nist.gov/vuln/detail/CVE-2025-27607
https://github.com/nhairs/python-json-logger/releases/tag/v3.3.0

-- 
You are receiving this mail because:
You are the assignee for the bug.