mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-05-07 05:10:20 +00:00
Code Issues Projects Releases Wiki Activity

python3-waitress: upgrade 1.4.2 -> 1.4.3

Browse Source 
This is a security release:

 - In Waitress version 1.4.2 a new regular expression was added to validate the
   headers that Waitress receives to make sure that it matches RFC7230.
   Unfortunately the regular expression was written in a way that with invalid
   input it leads to catastrophic backtracking which allows for a Denial of
   Service and CPU usage going to a 100%.

Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This commit is contained in:
Pierre-Jean Texier
2020-04-12 17:03:31 +02:00
committed by Khem Raj
parent e6bdd89134
commit 6218b1b8da
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
meta-python/recipes-devtools/python/python3-waitress_1.4.3.bb
+12
View File
@@ -0,0 +1,12 @@
SUMMARY = "A WSGI server for Python"
DESCRIPTION = "Waitress is meant to be a production-quality pure-Python WSGI \
server with very acceptable performance."
HOMEPAGE = "https://github.com/Pylons/waitress"
SECTION = "devel/python"
LICENSE = "ZPL-2.1"
LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=78ccb3640dc841e1baecb3e27a6966b2"
SRC_URI[md5sum] = "4bffad7009d3824ae61ea6c0696e45f6"
SRC_URI[sha256sum] = "045b3efc3d97c93362173ab1dfc159b52cfa22b46c3334ffc805dbdbf0e4309e"
inherit setuptools3 pypi