Ubuntu
waitress package

waitress 1.4.1-1ubuntu0.1 source package in Ubuntu

Changelog

waitress (1.4.1-1ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: Request smuggle
    - debian/patches/CVE-2022-24761-*: Fix for HTTP request smuggling due
      to incorrect validation in src/waitress/parser.py,
      src/waitress/receiver.py, src/waitress/rfc7230.py,
      src/waitress/utilities.py, test/test_functional.py,
      test/test_parser.py, test/test_receiver.py.
    - CVE-2022-24761
  * Fixing tests issues
    - debian/patches/fixing_tests.patch: fix compatibility issues in tests
      test/test_functional.py, test/test_receiver.py.

 -- Leonidas Da Silva Barbosa <email address hidden>  Thu, 31 Mar 2022 15:56:43 -0300

Upload details

Uploaded by:
Leonidas S. Barbosa
Uploaded to:
Focal
Original maintainer:
Ubuntu Developers
Architectures:
all
Section:
python
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Focal updates main misc
Focal security main misc

Builds

Focal: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
waitress_1.4.1.orig.tar.gz 162.4 KiB 54dd6eadfdde8074a82598af4d8692c704cb82a0be609faa47fb76db8dd3ddca
waitress_1.4.1-1ubuntu0.1.debian.tar.xz 10.7 KiB 697849602c23d314c345a8e5906c07dbb87c7f40238023ad9b17046ded031c35
waitress_1.4.1-1ubuntu0.1.dsc 2.2 KiB a5a87a65ac5b6aca8dbfabcf8ce0d41da50ecd57220a9663ad3682d48d46bd99

View changes file

Binary packages built by this source

python-waitress-doc: production-quality pure-Python WSGI server (documentation)

 Waitress is meant to be a production-quality pure-Python WSGI server with
 very acceptable performance. It has no dependencies except ones which live
 in the Python standard library. It runs on CPython on Unix and Windows under
 Python 2.7+ and Python 3.3+. It is also known to run on PyPy 1.6.0 on UNIX.
 It supports HTTP/1.0 and HTTP/1.1.
 .
 This package only contains the documentation.

python3-waitress: production-quality pure-Python WSGI server (Python 3)

 Waitress is meant to be a production-quality pure-Python WSGI server with
 very acceptable performance. It has no dependencies except ones which live
 in the Python standard library. It runs on CPython on Unix and Windows under
 Python 2.7+ and Python 3.3+. It is also known to run on PyPy 1.6.0 on UNIX.
 It supports HTTP/1.0 and HTTP/1.1.
 .
 This is the Python 3 version of the package.