AIX Open Source

 View Only
  • 1.  Vulnerable to CVE-2024-6345

    Posted Mon July 22, 2024 10:59 AM

    Hi Team, we have 1 new vulnerablities found

    CVE-2024-6345 (setuptools)

    Wondering if there is something in the scope to resolve this? Please let me know

    Thanks in advance!



    ------------------------------
    Pablo Daniel Zuñiga TREJO
    ------------------------------


  • 2.  RE: Vulnerable to CVE-2024-6345

    Posted Tue August 06, 2024 05:09 AM

    Hi,

    This CVE-2024-6345 is fixed in latest setuptools pkg.
    We will build and publish soon.  Once done, we will update this discussion. 

    Thanks

    Ranjit



    ------------------------------
    Ranjit Ranjan
    ------------------------------



  • 3.  RE: Vulnerable to CVE-2024-6345

    Posted Tue August 06, 2024 11:21 AM

    Thanks Ranjit, will wait for the update!



    ------------------------------
    Pablo Daniel Zuñiga TREJO
    ------------------------------



  • 4.  RE: Vulnerable to CVE-2024-6345

    Posted Mon August 26, 2024 10:06 AM

    Hi

    FYI.  setuptools 72.1.0 is now available in AIX tool box.  You can upgrade .  

    Thanks

    Ranjit



    ------------------------------
    Ranjit Ranjan
    ------------------------------