[Bug 294496] lang/python*: CVE-2026-4786: webbrowser.open() command injection mitigation for CVE-2026-4519 was incomplete

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 294496] lang/python*: CVE-2026-4786: webbrowser.open() command injection mitigation for CVE-2026-4519 was incomplete"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Mon, 04 May 2026 17:34:13 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=294496
Bug 294496 depends on bug 294486, which changed state.

Bug 294486 Summary: lang/python314: needs fix for CVE-2026-6100 use-after-free in decompressors when reusing instances after MemoryError
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=294486

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|Open                        |Closed
         Resolution|---                         |FIXED

-- 
You are receiving this mail because:
You are on the CC list for the bug.