Clarify the status of CVE-2022-42919 in python3.7 and pypy3
As described in the notes, CVE-2022-42919 is present in python3.7, but it is difficult to exploit. So is more accurate and safer than . Similar classification can be done to pypy3 for bullseye and buster.
This change also includes the related pypy3 commit, than introduced and fixed the issue.