waitress icon indicating copy to clipboard operation
waitress copied to clipboard
verified publisher icon Pylons

Backport CVE-2022-24761 for tag v1.4.4

Open ravanelli opened this issue 3 years ago • 1 comments

Hi Folks, We have a BZ to get the fix done in 2.1.1 https://github.com/Pylons/waitress/commit/9e0b8c801e4d505c2ffc91b891af4ba48af715e0 to the old versions available in EPEL

This backport was done for RHEL7 via CVE-2022-24761.

I created this FORK with an initial backport to v1.4.4. I wonder if we can create a new tag as v1.4.5 including this fix, + some help to validate it

ravanelli avatar Sep 02 '22 15:09 ravanelli

cc @carlwgeorge

ravanelli avatar Sep 02 '22 15:09 ravanelli