UbuntuUpdates.org

Package "sqlparse"

Name: sqlparse

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • SQL formatting utility

Latest version: 0.4.1-1ubuntu0.1
Release: hirsute (21.04)
Level: security
Repository: universe

Links



Other versions of "sqlparse" in Hirsute

Repository Area Version
base main 0.4.1-1
base universe 0.4.1-1
security main 0.4.1-1ubuntu0.1
updates main 0.4.1-1ubuntu0.1
updates universe 0.4.1-1ubuntu0.1
PPA: Postgresql 0.2.4-0.1~pgdg16.04+1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 0.4.1-1ubuntu0.1 2021-09-22 16:06:27 UTC

  sqlparse (0.4.1-1ubuntu0.1) hirsute-security; urgency=medium

  * SECURITY UPDATE: Regular expression denial of service
    - debian/patches/CVE-2021-32839.patch: Optimize regular expression
      for identifying line breaks in comments in sqlparse/filters/others.py,
      tests/test_format.py.
    - CVE-2021-32839

 -- Leonidas Da Silva Barbosa <email address hidden> Tue, 21 Sep 2021 13:14:52 -0300

CVE-2021-32839 sqlparse is a non-validating SQL parser module for Python. In sqlparse versions 0.4.0 and 0.4.1 there is a regular Expression Denial of Service in sq



About   -   Send Feedback to @ubuntu_updates