meta-openembedded

MIRRORS/meta-openembedded

Fork 0

mirror of https://github.com/openembedded/meta-openembedded.git synced 2025-12-25 19:57:27 +01:00

Commit Graph

Author	SHA1	Message	Date
Leon Anavi	0166a17f24	python3-tornado: Upgrade 6.4.1 -> 6.4.2 Upgrade to release 6.4.2 which brings security improvements: Parsing of the cookie header is now much more efficient. The older algorithm sometimes had quadratic performance which allowed for a denial-of-service attack in which the server would spend excessive CPU time parsing cookies and block the event loop. This change fixes CVE-2024-7592. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-11-25 08:25:02 -08:00

Author

SHA1

Message

Date

Leon Anavi

0166a17f24

python3-tornado: Upgrade 6.4.1 -> 6.4.2

Upgrade to release 6.4.2 which brings security improvements:

Parsing of the cookie header is now much more efficient. The older
algorithm sometimes had quadratic performance which allowed for a
denial-of-service attack in which the server would spend
excessive CPU time parsing cookies and block the event loop.
This change fixes CVE-2024-7592.

Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>

2024-11-25 08:25:02 -08:00

1 Commits