[ubuntu/jammy-security] configobj 5.0.6-5ubuntu0.1 (Accepted)
Ian Constantin
ian.constantin at canonical.com
Thu Sep 26 15:32:36 UTC 2024
configobj (5.0.6-5ubuntu0.1) jammy-security; urgency=medium
* SECURITY UPDATE: ReDoS
- debian/patches/CVE-2023-26112.patch: updates regex that can cause
catastrophic backtracking when a match fails in validate.py and adds a
test in tests/test_validate_errors.py.
- CVE-2023-26112
Date: 2024-09-20 12:38:18.656995+00:00
Changed-By: Ian Constantin <ian.constantin at canonical.com>
https://launchpad.net/ubuntu/+source/configobj/5.0.6-5ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list