-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-40ff0d8644 2024-08-26 01:30:49.757104 -------------------------------------------------------------------------------- Name : python-webob Product : Fedora 39 Version : 1.8.8 Release : 2.fc39 URL : https://webob.org Summary : WSGI request and response object Description : WebOb provides wrappers around the WSGI request environment, and an object to help create WSGI responses. The objects map much of the specified behavior of HTTP, including header parsing and accessors for other standard parts of the environment. -------------------------------------------------------------------------------- Update Information: Update to upstream. Fix open redirect issue in 1.8-branch rhbz#2305065 Update to upstream. Fix open redirect issue in 1.8-branch rhbz#2305065 -------------------------------------------------------------------------------- ChangeLog: * Sat Aug 17 2024 Ján ONDREJ (SAL) <ondrejj(at)salstar.sk> - 1.8.8-2 - Disable legacy-cgi requires for Fedora 40 and older systems * Thu Aug 15 2024 Ján ONDREJ (SAL) <ondrejj(at)salstar.sk> - 1.8.8-1 - Update to upstream. Fix open redirect issue in 1.8-branch rhbz#2305065 - pypi_source constructed manually according to project/name case inconsistency - only require legacy-cgi on on systems where it's present - remove python3.9 patch (applied upstream) * Fri Jul 19 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.8.7-15 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Sat Jun 15 2024 Mattia Verga <mattia.verga@xxxxxxxxx> - 1.8.7-14 - Explicitly require python3-cgi at runtime (Fedora#2245641) * Fri Jun 14 2024 Mattia Verga <mattia.verga@xxxxxxxxx> - 1.8.7-13 - Require legacy-cgi as build dependency - Fix FTB with Python 3.13 (Fedora#2245641) * Fri Jun 7 2024 Python Maint <python-maint@xxxxxxxxxx> - 1.8.7-12 - Rebuilt for Python 3.13 * Fri Jan 26 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.8.7-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Mon Jan 22 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.8.7-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2305066 - CVE-2024-42353 python-webob: WebOb's location header normalization during redirect leads to open redirect [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2305066 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-40ff0d8644' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------
-- _______________________________________________ package-announce mailing list -- package-announce@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-announce-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
