python3-waitress: upgrade 1.4.2 -> 1.4.3 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Pierre-Jean Texier <pjtexier@koncepto.io>	2020-04-12 17:03:31 +0200
committer	Khem Raj <raj.khem@gmail.com>	2020-04-12 22:57:22 -0700
commit	6218b1b8dadffa20c079e98ae2166fe95b4870f2 (patch)
tree	bcfa3239708ed2cdaf0c983056b5a8921073d8ab /meta-python/recipes-devtools/python/python-msgpack.inc
parent	e6bdd891342e550d20cf3f8a99c75918b071015c (diff)
download	meta-openembedded-6218b1b8dadffa20c079e98ae2166fe95b4870f2.tar.gz

python3-waitress: upgrade 1.4.2 -> 1.4.3

This is a security release: - In Waitress version 1.4.2 a new regular expression was added to validate the headers that Waitress receives to make sure that it matches RFC7230. Unfortunately the regular expression was written in a way that with invalid input it leads to catastrophic backtracking which allows for a Denial of Service and CPU usage going to a 100%. Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io> Signed-off-by: Khem Raj <raj.khem@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python-msgpack.inc')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: