[ubuntu/jammy-security] wheel 0.37.1-2ubuntu0.22.04.1 (Accepted)
David Fernandez Gonzalez
david.fernandezgonzalez at canonical.com
Tue Jan 24 08:43:22 UTC 2023
wheel (0.37.1-2ubuntu0.22.04.1) jammy-security; urgency=medium
* SECURITY UPDATE: ReDOS in wheelfile.py
- debian/patches/CVE-2022-40898.patch: Fix potential DoS attack
via WHEEL_INFO_RE by restricting matching dash and dot characters
in src/wheel/wheelfile.py.
- CVE-2022-40898
Date: 2023-01-23 14:51:24.791299+00:00
Changed-By: David Fernandez Gonzalez <david.fernandezgonzalez at canonical.com>
https://launchpad.net/ubuntu/+source/wheel/0.37.1-2ubuntu0.22.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list