ALT-BU-2023-3593-1
Branch sisyphus_riscv64 update bulletin.
Package python3-module-future updated to version 0.18.3-alt1 for branch sisyphus_riscv64.
Closed vulnerabilities
BDU:2023-02446
Уязвимость программы совместимости версий Python Charmers Future, связанная с некорректным регулярным выражением, позволяющая нарушителю вызывать отказ в обслуживании
Modified: 2024-11-21
CVE-2022-40899
An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie header from malicious web server.
- https://github.com/python/cpython/pull/17157
- https://github.com/python/cpython/pull/17157
- https://github.com/PythonCharmers/python-future/blob/master/src/future/backports/http/cookiejar.py#L215
- https://github.com/PythonCharmers/python-future/blob/master/src/future/backports/http/cookiejar.py#L215
- https://github.com/PythonCharmers/python-future/pull/610
- https://github.com/PythonCharmers/python-future/pull/610
- https://pypi.org/project/future/
- https://pypi.org/project/future/
- https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages/
- https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages/
Package dbus updated to version 1.14.6-alt2 for branch sisyphus_riscv64.
Closed bugs
зависимость на /proc
Package kernelshark updated to version 2.2.0-alt3 for branch sisyphus_riscv64.
Closed bugs
Ошибка сегментирования при попытке открыть файл .dat
Ошибка QLocalSocket::connectToServer: Invalid name при завершении записи