Skip to content

Update actions/setup-python action to v6.3.0#339

Open
renovate[bot] wants to merge 1 commit into
trunkfrom
renovate/actions-setup-python-6.x
Open

Update actions/setup-python action to v6.3.0#339
renovate[bot] wants to merge 1 commit into
trunkfrom
renovate/actions-setup-python-6.x

Conversation

@renovate

@renovate renovate Bot commented Jun 27, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Type Update Change
actions/setup-python action minor v6.2.0v6.3.0

Release Notes

actions/setup-python (actions/setup-python)

v6.3.0

Compare Source

What's Changed
Enhancement
Dependency update
Documentation
New Contributors

Full Changelog: actions/setup-python@v6...v6.3.0


Configuration

📅 Schedule: (UTC)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@github-actions

Copy link
Copy Markdown
Contributor

⚠️ Vulnerabilities detected in ghcr.io/3lvia/core/vulnerable-service:latest-cache ⚠️

Found in: ghcr.io/3lvia/core/vulnerable-service:latest-cache (debian 10.13)

glibc: stack-based buffer overflow in netgroup cache – HIGH

ID: CVE-2024-33599

Package Name: libc-bin

Installed Version: 2.28-10+deb10u3

nscd: Stack-based buffer overflow in netgroup cache

If the Name Service Cache Daemon's (nscd) fixed size cache is exhausted
by client requests then a subsequent client request for netgroup data
may result in a stack-based buffer overflow. This flaw was introduced
in glibc 2.15 when the cache was added to nscd.

This vulnerability is only present in the nscd binary.

References:

glibc: stack-based buffer overflow in netgroup cache – HIGH

ID: CVE-2024-33599

Package Name: libc6

Installed Version: 2.28-10+deb10u3

nscd: Stack-based buffer overflow in netgroup cache

If the Name Service Cache Daemon's (nscd) fixed size cache is exhausted
by client requests then a subsequent client request for netgroup data
may result in a stack-based buffer overflow. This flaw was introduced
in glibc 2.15 when the cache was added to nscd.

This vulnerability is only present in the nscd binary.

References:

@github-actions

Copy link
Copy Markdown
Contributor

Integration Test Results

2 tests  +2   2 ✅ +2   2s ⏱️ +2s
1 suites +1   0 💤 ±0 
1 files   +1   0 ❌ ±0 

Results for commit 5415cc4. ± Comparison against base commit 9ca5ab6.

@github-actions

Copy link
Copy Markdown
Contributor

Unit Test Results

1 tests  +1   1 ✅ +1   0s ⏱️ ±0s
1 suites +1   0 💤 ±0 
1 files   +1   0 ❌ ±0 

Results for commit 5415cc4. ± Comparison against base commit 9ca5ab6.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Development

Successfully merging this pull request may close these issues.

0 participants