From 420b363be1412794deae884b0e12e4b250c38b24 Mon Sep 17 00:00:00 2001
From: Jeremy Katz <jeremy.katz@sonarsource.com>
Date: Tue, 13 May 2025 13:32:39 -0400
Subject: [PATCH 1/2] Remove incorrect versions from PYSEC-2025-38.yaml

PYSEC advisory is incorrectly stating that some newer versions with a fix are vulnerable to PYSEC-2025-38
---
 vulns/ironic/PYSEC-2025-38.yaml | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/vulns/ironic/PYSEC-2025-38.yaml b/vulns/ironic/PYSEC-2025-38.yaml
index f2965d54..60ca1d05 100644
--- a/vulns/ironic/PYSEC-2025-38.yaml
+++ b/vulns/ironic/PYSEC-2025-38.yaml
@@ -110,15 +110,11 @@ affected:
   - 24.1.0
   - 24.1.1
   - 24.1.2
-  - 24.1.3
   - 25.0.0
   - 26.0.0
   - 26.1.0
-  - 26.1.1
   - 27.0.0
   - 28.0.0
   - 29.0.0
   - 9.1.6
   - 9.1.7
-  - 24.1.4
-  - 26.1.2

From 8760c290e17f25e44fe1b770fa1efe94562e091f Mon Sep 17 00:00:00 2001
From: Jeremy Katz <jeremy.katz@sonarsource.com>
Date: Wed, 14 May 2025 11:23:03 -0400
Subject: [PATCH 2/2] Adjust ranges for vulnerability

---
 vulns/ironic/PYSEC-2025-38.yaml | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/vulns/ironic/PYSEC-2025-38.yaml b/vulns/ironic/PYSEC-2025-38.yaml
index 60ca1d05..4eba4ffa 100644
--- a/vulns/ironic/PYSEC-2025-38.yaml
+++ b/vulns/ironic/PYSEC-2025-38.yaml
@@ -25,7 +25,11 @@ affected:
   - type: ECOSYSTEM
     events:
     - introduced: '0'
-    - fixed: 29.0.1
+    - fixed: "24.1.3"
+    - introduced: "25.0.0"
+    - fixed: "26.1.1"
+    - introduced: "27.0.0"
+    - fixed: "29.0.1"
   versions:
   - '0.0'
   - 10.1.10