Update urllib3 to address CVE-2018-20060, CVE-2019-11236, and CVE-2019-11324

Description

I commend iX for slowly but surely stomping every complaint that 'pkg audit -F' outputs, and am happy to see that 11.3-rc1 is down to just one:

pkg audit -F

Fetching vuln.xml.bz2: 100% 822 KiB 841.9kB/s 00:01

py37-urllib3-1.22,1 is vulnerable:

urllib3 – multiple vulnerabilities

CVE: CVE-2019-11324

CVE: CVE-2019-11236

CVE: CVE-2018-20060

WWW: https://vuxml.FreeBSD.org/freebsd/87270ba5-03d3-11ea-b81f-3085a9a95629.html

Would be great to have this one stomped before final 11.3.

Problem/Justification

None

Impact

None

SmartDraw Connector

Katalon Manual Tests (BETA)

Activity

Dru Lavigne
December 17, 2019 at 7:26 PM

related PR: https://github.com/freenas/ports/pull/482

Bug Clerk
December 16, 2019 at 3:07 PM

11.3 PR: https://github.com/freenas/ports/pull/477

Resize issue view side panel

Complete

Details

Assignee

Waqar

Reporter

Sean McBride

Priority

Low

Parent

NAS-102507 New, deprecated, and updated software

More fields

Katalon Platform

Created December 12, 2019 at 9:43 PM

Updated July 1, 2022 at 4:47 PM

Resolved December 16, 2019 at 3:07 PM