simon-git: putty-wishlist (main): Simon Tatham

Commits to Tartarus hosted VCS tartarus-commits at lists.tartarus.org
Mon Mar 23 08:43:32 GMT 2026 

TL;DR:
  2f3f9ad Fix bugs2html crash if a CVE appears before a release is out.
  22b1d5c eddsa-overlarge-s: add reference to CVE-2026-4115.

Repository:     https://git.tartarus.org/simon/putty-wishlist.git
On the web:     https://git.tartarus.org/?p=simon/putty-wishlist.git
Branch updated: main
Committer:      Simon Tatham <anakin at pobox.com>
Date:           2026-03-23 08:43:32

commit 2f3f9addb27ef487ad561bca76d186af0dadcfca
web diff https://git.tartarus.org/?p=simon/putty-wishlist.git;a=commitdiff;h=2f3f9addb27ef487ad561bca76d186af0dadcfca;hp=db03a937649a6b50303572e66e627f3a68b39418
Author: Simon Tatham <anakin at pobox.com>
Date:   Sat Mar 14 09:13:35 2026 +0000

    Fix bugs2html crash if a CVE appears before a release is out.
    
    In gen_cve_list, we assume that b.first_fixed_rel for a CVE-related
    issue is either None (there is no Fixed-in field at all for the bug)
    or is something you can call str() on. But in fact, if the bug has
    been fixed in the snapshots only, there _is_ a Fixed-In, but it's the
    result of calling Version.nextrel(), which has None in its 'string'
    field and will return None from __str__, which even Python's lax type
    checking thinks is Too Silly.
    
    Added an is_some() method so that you can query a Version object to
    see if it represents a real version.
    
    The recent issue 'eddsa-overlarge-s' seems to be the first time this
    has come up (or else we'd have noticed this before!). It's been
    allocated a CVE number (though at the time of writing this it's only a
    holding page on Mitre's site), but since we don't regard it as a
    vulnerability, we haven't rushed out a release containing the fix.

 control/bugs2html.py | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

commit 22b1d5cf11be70286727b17b1c74ef21dfd6edb9
web diff https://git.tartarus.org/?p=simon/putty-wishlist.git;a=commitdiff;h=22b1d5cf11be70286727b17b1c74ef21dfd6edb9;hp=2f3f9addb27ef487ad561bca76d186af0dadcfca
Author: Simon Tatham <anakin at pobox.com>
Date:   Sat Mar 14 09:16:48 2026 +0000

    eddsa-overlarge-s: add reference to CVE-2026-4115.

 data/eddsa-overlarge-s | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

More information about the tartarus-commits mailing list