Update OSV records from CVE

advisories/python/PSF-0000-CVE-2024-11168.json

@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.5.0",
+  "id": "PSF-0000-CVE-2024-11168",
+  "aliases": [
+    "CVE-2024-11168"
+  ],
+  "published": "2024-11-12T21:22:23.438Z",
+  "modified": "2024-11-12T21:33:36.318Z",
+  "details": "The urllib.parse.urlsplit() and urlparse() functions improperly validated bracketed hosts (`[]`), allowing hosts that weren't IPv6 or IPvFuture. This behavior was not conformant to RFC 3986 and potentially enabled SSRF if a URL is processed by more than one URL parser.",
+  "affected": [
+    {
+      "ranges": [
+        {
+          "type": "GIT",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "29f348e232e82938ba2165843c448c2b291504c5"
+            },
+            {
+              "fixed": "b2171a2fd41416cf68afd67460578631d755a550"
+            }
+          ],
+          "repo": "https://github.com/python/cpython"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "type": "FIX",
+      "url": "https://github.com/python/cpython/commit/29f348e232e82938ba2165843c448c2b291504c5"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/python/cpython/pull/103849"
+    },
+    {
+      "type": "REPORT",
+      "url": "https://github.com/python/cpython/issues/103848"
+    },
+    {
+      "type": "ADVISORY",
+      "url": "https://mail.python.org/archives/list/[email protected]/thread/XPWB6XVZ5G5KGEI63M4AWLIEUF5BPH4T/"
+    },
+    {
+      "type": "FIX",
+      "url": "https://github.com/python/cpython/commit/b2171a2fd41416cf68afd67460578631d755a550"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": []
+  }
+}