[ubuntu/bionic-security] python-future 0.15.2-4ubuntu2.1 (Accepted)
David Fernandez Gonzalez
david.fernandezgonzalez at canonical.com
Tue Jan 31 10:08:08 UTC 2023
python-future (0.15.2-4ubuntu2.1) bionic-security; urgency=medium
* SECURITY UPDATE: ReDOS through Set-Cookie header
- debian/patches/CVE-2022-40899.patch: Fix overlapping \s*
regex groups in src/future/backports/http/cookiejar.py.
- CVE-2022-40899
Date: 2023-01-25 11:45:12.093498+00:00
Changed-By: David Fernandez Gonzalez <david.fernandezgonzalez at canonical.com>
https://launchpad.net/ubuntu/+source/python-future/0.15.2-4ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Bionic-changes
mailing list