[ubuntu/focal-security] wheel 0.34.2-1ubuntu0.1 (Accepted)

David Fernandez Gonzalez david.fernandezgonzalez at canonical.com
Tue Jan 24 08:43:24 UTC 2023


wheel (0.34.2-1ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: ReDOS in wheelfile.py
    - debian/patches/CVE-2022-40898.patch: Fix potential DoS attack  
      via WHEEL_INFO_RE by restricting matching dash and dot characters              
      in src/wheel/wheelfile.py.
    - CVE-2022-40898

Date: 2023-01-23 14:51:26.484853+00:00
Changed-By: David Fernandez Gonzalez <david.fernandezgonzalez at canonical.com>
https://launchpad.net/ubuntu/+source/wheel/0.34.2-1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the Focal-changes mailing list