For active/CVE-2021-33503, it should be `upstream_python-urllib3: released (1.26.5)`.
This is a bit clearer if you look at: - https://github.com/urllib3/urllib3/releases/tag/1.26.4 - https://github.com/urllib3/urllib3/commit/2d4a3fee6de2fa45eb82169361918f759269b4ec - https://github.com/urllib3/urllib3/releases/tag/1.26.5 (notice the dates)
You can also verify the commit with: - https://github.com/urllib3/urllib3/commits/1.26.4 - https://github.com/urllib3/urllib3/commits/1.26.5
For the upstream field we want to know the upstream version number. What is the difference between an upstream version number and Debian's version number? What is the difference between those and Ubuntu?
https://www.ducea.com/2006/06/17/ubuntu-package-version-naming-explanation/
« Back to merge proposal
For active/ CVE-2021- 33503, it should be `upstream_ python- urllib3: released (1.26.5)`.
This is a bit clearer if you look at: /github. com/urllib3/ urllib3/ releases/ tag/1.26. 4 /github. com/urllib3/ urllib3/ commit/ 2d4a3fee6de2fa4 5eb82169361918f 759269b4ec /github. com/urllib3/ urllib3/ releases/ tag/1.26. 5
- https:/
- https:/
- https:/
(notice the dates)
You can also verify the commit with: /github. com/urllib3/ urllib3/ commits/ 1.26.4 /github. com/urllib3/ urllib3/ commits/ 1.26.5
- https:/
- https:/
For the upstream field we want to know the upstream version number. What is the difference between an upstream version number and Debian's version number? What is the difference between those and Ubuntu?
https:/ /www.ducea. com/2006/ 06/17/ubuntu- package- version- naming- explanation/