Track fixed version for starlette issue in trixie

Matheus Polkornyrequested to merge
polkorny/security-tracker:master into master

The CVE-2025-54121 was fixed in version 0.46.1-3.

The fix is already present in d/patches and was first uploaded to unstable, later migrating to testing (trixie):

https://salsa.debian.org/python-team/packages/starlette/-/blob/debian/0.46.1-3/debian/patches/0002-fix-cve-2024-28849-async-write.patch?ref_type=tags

Note: The patch filename contains a typo referencing a different CVE, but this patch fixes CVE-2025-54121.

Merge request reports