python3-waitress: upgrade 3.0.0 -> 3.0.2 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Gyorgy Sarvari <skandigraun@gmail.com>	2026-01-23 18:02:16 +0100
committer	Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-01-26 10:04:46 +0530
commit	eb50cc82bed0a7f7d36db713fca9017d11c2102e (patch)
tree	763c321c8ada6ab43e4a4457849016285b6fcc6b /meta-python/recipes-devtools/python/python3-paramiko_3.4.0.bb
parent	fbe5524dc822317c1a4b7aad566a6dae5657cb22 (diff)
download	meta-openembedded-eb50cc82bed0a7f7d36db713fca9017d11c2102e.tar.gz

python3-waitress: upgrade 3.0.0 -> 3.0.2

Contains fixes for CVE-2024-49768 and CVE-2024-49769 Changelog: 3.0.1: - Python 3.8 is no longer supported. - Added support for Python 3.13. - Fix a bug that would lead to Waitress busy looping on select() on a half-open socket due to a race condition that existed when creating a new HTTPChannel. - No longer strip the header values before passing them to the WSGI environ. - Fix a race condition in Waitress when `channel_request_lookahead` is enabled that could lead to HTTP request smuggling. 3.0.2: - When using Waitress to process trusted proxy headers, Waitress will now update the headers to drop any untrusted values, thereby making sure that WSGI apps only get trusted and validated values that Waitress itself used to update the environ. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-paramiko_3.4.0.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: