[ubuntu/mantic-proposed] sqlparse 0.4.2-1ubuntu1 (Accepted)

Leonidas Da Silva Barbosa leo.barbosa at canonical.com
Fri Jun 2 14:43:11 UTC 2023 

sqlparse (0.4.2-1ubuntu1) mantic; urgency=medium

  * SECURITY UPDATE: ReDoS
    - debian/patches/CVE-2023-30608.patch: remove unnecessary parts
      in regex for bad escaping in sqlparse/keywords.py.
    - CVE-2023-30608

Date: Fri, 02 Jun 2023 10:32:02 -0300
Changed-By: Leonidas Da Silva Barbosa <leo.barbosa at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/sqlparse/0.4.2-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Fri, 02 Jun 2023 10:32:02 -0300
Source: sqlparse
Built-For-Profiles: noudeb
Architecture: source
Version: 0.4.2-1ubuntu1
Distribution: mantic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Leonidas Da Silva Barbosa <leo.barbosa at canonical.com>
Changes:
 sqlparse (0.4.2-1ubuntu1) mantic; urgency=medium
 .
   * SECURITY UPDATE: ReDoS
     - debian/patches/CVE-2023-30608.patch: remove unnecessary parts
       in regex for bad escaping in sqlparse/keywords.py.
     - CVE-2023-30608
Checksums-Sha1:
 e71ff22bcdb99d0a07ed0e042c5df648a110f5a9 2569 sqlparse_0.4.2-1ubuntu1.dsc
 e40febd6a07247a11e5e0bfde70e94fa41769d86 7800 sqlparse_0.4.2-1ubuntu1.debian.tar.xz
 5555c252abf36fd76b9826fd3e84dd636963e4ad 7852 sqlparse_0.4.2-1ubuntu1_source.buildinfo
Checksums-Sha256:
 d3343d0e552d8e9f4090549aed892454771cf4dae700a53a6f03d176a8d9b356 2569 sqlparse_0.4.2-1ubuntu1.dsc
 0a4318e6436f3c55e8b5efd2858bc5c566717506341f7f937c346374f6aab445 7800 sqlparse_0.4.2-1ubuntu1.debian.tar.xz
 26baa9bff721d818ff6f2a42b6b68de8191a9ede8ce6bc3c6da849b7f6d33b92 7852 sqlparse_0.4.2-1ubuntu1_source.buildinfo
Files:
 72f49746c6f3c8ad490e3ec99ad6a4f1 2569 python optional sqlparse_0.4.2-1ubuntu1.dsc
 8276294e7643421428124ff2f9b85330 7800 python optional sqlparse_0.4.2-1ubuntu1.debian.tar.xz
 8d0dec6d74bf331c0ea58655991b3558 7852 python optional sqlparse_0.4.2-1ubuntu1_source.buildinfo
Original-Maintainer: Andrii Senkovych <andrii at senkovych.com>

More information about the mantic-changes mailing list