Message #13 received at submit@debbugs.gnu.org (full text, mbox, reply):
Received: (at submit) by debbugs.gnu.org; 23 Mar 2021 17:55:32 +0000 From debbugs-submit-bounces@debbugs.gnu.org Tue Mar 23 13:55:32 2021 Received: from localhost ([127.0.0.1]:32928 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces@debbugs.gnu.org>) id 1lOlFb-0005R8-WD for submit@debbugs.gnu.org; Tue, 23 Mar 2021 13:55:32 -0400 Received: from lists.gnu.org ([209.51.188.17]:55582) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <leo@famulari.name>) id 1lOlFZ-0005Qz-Bt for submit@debbugs.gnu.org; Tue, 23 Mar 2021 13:55:30 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:46686) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <leo@famulari.name>) id 1lOlFZ-0004G3-0e for bug-guix@gnu.org; Tue, 23 Mar 2021 13:55:29 -0400 Received: from out4-smtp.messagingengine.com ([66.111.4.28]:60287) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <leo@famulari.name>) id 1lOlFX-0002mI-41 for bug-guix@gnu.org; Tue, 23 Mar 2021 13:55:28 -0400 Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailout.nyi.internal (Postfix) with ESMTP id 0E8EC5C0126; Tue, 23 Mar 2021 13:55:26 -0400 (EDT) Received: from mailfrontend1 ([10.202.2.162]) by compute4.internal (MEProxy); Tue, 23 Mar 2021 13:55:26 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=famulari.name; h=date:from:to:cc:subject:message-id:references:mime-version :content-type:in-reply-to; s=mesmtp; bh=QOTozZ+IG0AxfbKU0Ulntp0g Jw2+/rXrj4klH5h7DZM=; b=QHy/PSxe7Ki+LP15vi6bKMHK+w4zCsZpbmkeJwgQ miJBL7U+M+7VRH1LwnNTRygrZj8wbnLw9rpNgWvJHGcgbG9HP4FOQbcD8vwxQZI5 r5xbao/09w/EyB/ZHYQWicms5OXzvCJ33CC8DJNB1he2c1dbU6FobtqMpcwconni T8U= DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm2; bh=QOTozZ +IG0AxfbKU0Ulntp0gJw2+/rXrj4klH5h7DZM=; b=jjUR0kCgIou6hrTs1Exqv1 qdVy/rTW8vPF5HWTZbK5gHgAB5PxHC9CVqmo/dEdIuOdPvCGW21ssEnn8read5LJ AJ9l18c0xSG5RnN8/6h2KLR1dvL7+cCWeRBV500gdOHFLRdpMcy2PyBC+tDZrKP6 xp3aHRx5z3d/JvnJCCSPIDVMV2bB2IW/6XWk/1q5zKFEqBrbnmFu+ARoQJ7+kff+ cPyaICp76zGsjEpjuG7GYbAzC6Y1HBiFyXjGIMVFE7Iq4PchKtBcct3DeFLgIgSj UPCXIPobEA9R8vyvLQN2WsAcyOcO3PKUt5vPhOvhxmdDkhx6hn1kTkUgmLO9i/Tg == X-ME-Sender: <xms:jStaYIe2FthNbHgETDKnnFRTEbp2uZ8h_zHcvCCevwyMUQTAf42ZTg> <xme:jStaYB1d9zMKW6_ehjsMvi1ZKgah2tqnjsCmq2n1D7RI__zw73T2V20UP36Ccw5qC mUxvtZAdiFOk1QJdA> X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduledrudegiedguddtiecutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmd enucfjughrpeffhffvuffkfhggtggujgesghdtreertddtudenucfhrhhomhepnfgvohcu hfgrmhhulhgrrhhiuceolhgvohesfhgrmhhulhgrrhhirdhnrghmvgeqnecuggftrfgrth htvghrnhepgfelhffhjeelfeeuteefhfdtjeeiueduledvvdeitdegudelffefffeiveef gfejnecuffhomhgrihhnpeguvggsihgrnhdrohhrghdprhgvughhrghtrdgtohhmpdhgih hthhhusgdrtghomhenucfkphepuddttddruddurdduieelrdduudeknecuvehluhhsthgv rhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomheplhgvohesfhgrmhhulhgrrh hirdhnrghmvg X-ME-Proxy: <xmx:jStaYHKuH-nO0fNWWcYjflwU2qptlvl1sVOZAPsqkPbs8qlcxHOVHw> <xmx:jStaYIFw3PnhpZLM_xJ2Idl05XFy4srkTizJdH645-tjTecemfNpFA> <xmx:jStaYLXqxHlG6Cro6BLPVoVfPOhaBqFGO8_FeHUgiezC63Tsu7FuFA> <xmx:jitaYHvfYvc-dB4ZOmlyid7_GDX9zfuRY1vJUGyj4hkvf-lfqcqQHQ> Received: from localhost (pool-100-11-169-118.phlapa.fios.verizon.net [100.11.169.118]) by mail.messagingengine.com (Postfix) with ESMTPA id 886B2240422; Tue, 23 Mar 2021 13:55:25 -0400 (EDT) Date: Tue, 23 Mar 2021 13:55:23 -0400 From: Leo Famulari <leo@famulari.name> To: Léo Le Bouter via Bug reports for GNU Guix <bug-guix@gnu.org> Subject: Re: bug#47319: python-lxml is vulnerable to CVE-2021-28957 Message-ID: <YFori3lHDKLjAEyE@jasmine.lan> References: <8e3d68f9e674d1556bf2ba6baff0e72c069a2673.camel@zaclys.net> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="ebP/cDqkhHao4V5E" Content-Disposition: inline In-Reply-To: <8e3d68f9e674d1556bf2ba6baff0e72c069a2673.camel@zaclys.net> Received-SPF: pass client-ip=66.111.4.28; envelope-from=leo@famulari.name; helo=out4-smtp.messagingengine.com X-Spam_score_int: -27 X-Spam_score: -2.8 X-Spam_bar: -- X-Spam_report: (-2.8 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-Spam-Score: -1.4 (-) X-Debbugs-Envelope-To: submit Cc: 47319@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request@debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit@debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request@debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request@debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org> X-Spam-Score: -2.4 (--)
[Message part 1 (text/plain, inline)]
[signature.asc (application/pgp-signature, inline)]
Send a report that this bug log contains spam.
Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.