MIRRORS/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2025-12-15 23:05:34 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

python3-waitress: upgrade 1.4.2 -> 1.4.3

Browse Source 
This is a security release:

 - In Waitress version 1.4.2 a new regular expression was added to validate the
   headers that Waitress receives to make sure that it matches RFC7230.
   Unfortunately the regular expression was written in a way that with invalid
   input it leads to catastrophic backtracking which allows for a Denial of
   Service and CPU usage going to a 100%.

Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This commit is contained in:
Pierre-Jean Texier 2020-04-12 17:03:31 +02:00 committed by Khem Raj
parent e6bdd89134
commit 6218b1b8da
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
meta-python/recipes-devtools/python/python3-waitress_1.4.2.bb → meta-python/recipes-devtools/python/python3-waitress_1.4.3.bb
View File

@ -6,7 +6,7 @@ SECTION = "devel/python"
LICENSE = "ZPL-2.1"
LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=78ccb3640dc841e1baecb3e27a6966b2"
SRC_URI[md5sum] = "fdeed7ec32bbba011e90801208378c89"
SRC_URI[sha256sum] = "67a60a376f0eb335ed88967c42b73983a58d66a2a72eb9009a42725f7453b142"
SRC_URI[md5sum] = "4bffad7009d3824ae61ea6c0696e45f6"
SRC_URI[sha256sum] = "045b3efc3d97c93362173ab1dfc159b52cfa22b46c3334ffc805dbdbf0e4309e"
inherit setuptools3 pypi