UbuntuUpdates.org

Package "waitress"

Name: waitress

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • production-quality pure-Python WSGI server (documentation)
  • production-quality pure-Python WSGI server (Python 3)
Latest version: 1.4.1-1ubuntu0.2
Release: focal (20.04)
Level: updates
Repository: main

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "waitress" in Focal

Repository Area Version
base main 1.4.1-1
security main 1.4.1-1ubuntu0.2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.4.1-1ubuntu0.2 2024-11-19 19:07:02 UTC

  waitress (1.4.1-1ubuntu0.2) focal-security; urgency=medium

  * SECURITY UPDATE: Denial of service through socket busy loop.
    - debian/patches/CVE-2024-49769-*.patch: Assign self.connected to True in
      src/waitress/channel.py. Remove code from vendored library in
      src/waitress/wasyncore.py.
    - CVE-2024-49769

 -- Hlib Korzhynskyy <email address hidden> Mon, 04 Nov 2024 17:12:10 -0330
Source diff to previous version
CVE-2024-49769 Waitress is a Web Server Gateway Interface server for Python 2 and 3. When a remote client closes the connection before waitress has had the opportun

Version: 1.4.1-1ubuntu0.1 2022-04-05 12:06:21 UTC

  waitress (1.4.1-1ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: Request smuggle
    - debian/patches/CVE-2022-24761-*: Fix for HTTP request smuggling due
      to incorrect validation in src/waitress/parser.py,
      src/waitress/receiver.py, src/waitress/rfc7230.py,
      src/waitress/utilities.py, test/test_functional.py,
      test/test_parser.py, test/test_receiver.py.
    - CVE-2022-24761
  * Fixing tests issues
    - debian/patches/fixing_tests.patch: fix compatibility issues in tests
      test/test_functional.py, test/test_receiver.py.

 -- Leonidas Da Silva Barbosa <email address hidden> Thu, 31 Mar 2022 15:56:43 -0300
CVE-2022-24761 Waitress is a Web Server Gateway Interface server for Python 2 and 3. When using Waitress versions 2.1.0 and prior behind a proxy that does not prope


About   -   Send Feedback to @ubuntu_updates