Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > linux.debian.maint.python > #16492 > unrolled thread
| Started by | Sean Whitton <spwhitton@spwhitton.name> |
|---|---|
| First post | 2024-11-29 04:30 +0100 |
| Last post | 2024-11-29 09:40 +0100 |
| Articles | 3 — 2 participants |
Back to article view | Back to linux.debian.maint.python
python-werkzeug CVEs Sean Whitton <spwhitton@spwhitton.name> - 2024-11-29 04:30 +0100
Re: python-werkzeug CVEs Carsten Schoenert <c.schoenert@t-online.de> - 2024-11-29 08:40 +0100
Re: python-werkzeug CVEs Sean Whitton <spwhitton@spwhitton.name> - 2024-11-29 09:40 +0100
| From | Sean Whitton <spwhitton@spwhitton.name> |
|---|---|
| Date | 2024-11-29 04:30 +0100 |
| Subject | python-werkzeug CVEs |
| Message-ID | <JNZRD-cmec-1@gated-at.bofh.it> |
[Multipart message — attachments visible in raw view] — view raw
Hello, There are three DoS CVEs for python-werkzeug in stable. I intend to fix these as part of the Debian LTS team, sponsored by Freexian. I would like also to fix them in bookworm, because that will become an LTS release eventually. Would you like me to go ahead and submit a stable update request, or are you already working on something? Thanks. -- Sean Whitton
[toc] | [next] | [standalone]
| From | Carsten Schoenert <c.schoenert@t-online.de> |
|---|---|
| Date | 2024-11-29 08:40 +0100 |
| Message-ID | <JO3Lz-cppV-7@gated-at.bofh.it> |
| In reply to | #16492 |
Hi Sean, Am 29.11.24 um 04:22 schrieb Sean Whitton: > Hello, > > There are three DoS CVEs for python-werkzeug in stable. > > I intend to fix these as part of the Debian LTS team, sponsored by > Freexian. I would like also to fix them in bookworm, because that will > become an LTS release eventually. Would you like me to go ahead and > submit a stable update request, or are you already working on something? no, I haven't looked into the details yet to fix these CVEs for the older versions in Debian, I was intending to look into these after the recent happen update of Werkzeug plus Flask *and* after my moving of home. It would take at least some more weeks on my sid, please go ahead and don't wait for me. Thanks for taking care! -- Regards Carsten
[toc] | [prev] | [next] | [standalone]
| From | Sean Whitton <spwhitton@spwhitton.name> |
|---|---|
| Date | 2024-11-29 09:40 +0100 |
| Message-ID | <JO4HE-cqeB-17@gated-at.bofh.it> |
| In reply to | #16494 |
Hello, On Fri 29 Nov 2024 at 08:38am +01, Carsten Schoenert wrote: > Hi Sean, > > Am 29.11.24 um 04:22 schrieb Sean Whitton: >> Hello, >> There are three DoS CVEs for python-werkzeug in stable. >> I intend to fix these as part of the Debian LTS team, sponsored by >> Freexian. I would like also to fix them in bookworm, because that will >> become an LTS release eventually. Would you like me to go ahead and >> submit a stable update request, or are you already working on something? > > no, I haven't looked into the details yet to fix these CVEs for the older > versions in Debian, I was intending to look into these after the recent happen > update of Werkzeug plus Flask *and* after my moving of home. It would take at > least some more weeks on my sid, please go ahead and don't wait for me. Thanks for getting back to me so quickly. I'll see how I get on. -- Sean Whitton
[toc] | [prev] | [standalone]
Back to top | Article view | linux.debian.maint.python
csiph-web