| Summary: | python-bottle new security issue CVE-2022-31799 | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | David Walser <luigiwalser> |
| Component: | Security | Assignee: | QA Team <qa-bugs> |
| Status: | RESOLVED FIXED | QA Contact: | Sec team <security> |
| Severity: | major | ||
| Priority: | Normal | CC: | andrewsfarm, davidwhodgins, herman.viaene, sysadmin-bugs, yvesbrungard |
| Version: | 8 | Keywords: | advisory, validated_update |
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | MGA8-64-OK | ||
| Source RPM: | python-bottle-0.12.19-4.mga9.src.rpm | CVE: | |
| Status comment: | |||
| Attachments: | testfile for python-bottle | ||
|
Description
David Walser
2022-06-09 22:40:16 CEST
David Walser
2022-06-09 22:40:27 CEST
Whiteboard:
(none) =>
MGA8TOO Debian has issued an advisory for this on June 9: https://www.debian.org/security/2022/dsa-5159 New release 0.12.20 is now built. python3-bottle-0.12.20-1.mga8.noarch.rpm Source: python-bottle-0.12.20-1.mga8.src.rpm CC:
(none) =>
yves.brungard_mageia
papoteur
2022-06-20 09:50:08 CEST
Status comment:
Fixed upstream in 0.12.20 =>
(none)
papoteur
2022-06-20 12:17:49 CEST
Version:
Cauldron =>
8 Fedora has issued an advisory for this today (June 22): https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/KTLOQGMDZEPIYTFC2G53OQV2ULCGYS3F/ Severity:
normal =>
major MGA8-64 Plasma on Acer Aspire 5253 No installation issues. Run the scriptfile both with python and python3. $ python bottlescript.py Bottle v0.12.20 server starting up (using WSGIRefServer())... Listening on http://localhost:8080/ Hit Ctrl-C to quit. and $ python3 bottlescript.py Bottle v0.12.20 server starting up (using WSGIRefServer())... Listening on http://localhost:8080/ Hit Ctrl-C to quit. In both cases point the browser to http://localhost:8080/hello and the the greeting. Looks OK. Whiteboard:
(none) =>
MGA8-64-OK Validating. Keywords:
(none) =>
validated_update
Dave Hodgins
2022-06-30 20:43:09 CEST
CC:
(none) =>
davidwhodgins An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0245.html Status:
NEW =>
RESOLVED |