Re: [OE-core] [PATCH v2] python3-idna: Upgrade 3.13 -> 3.17 #security

All of lore.kernel.org
 help / color / mirror / Atom feed

* Re: [OE-core] [PATCH v2] python3-idna: Upgrade 3.13 -> 3.17 #security
       [not found] <18B4B2091480F9D8.111707@lists.openembedded.org>
@ 2026-05-31 16:07 ` Jörg Sommer
  0 siblings, 0 replies; only message in thread
From: Jörg Sommer @ 2026-05-31 16:07 UTC (permalink / raw)
  To: openembedded-core

[-- Attachment #1: Type: text/plain, Size: 578 bytes --]

Jörg Sommer via lists.openembedded.org schrieb am So 31. Mai, 18:04 (+0200):
> * 3.14 (2026-05-10)
> 
> - Removed opportunity to process long inputs into quadratic
>   time by rejecting oversize inputs up-front. Closes a bypass
>   of the CVE-2024-3651 mitigation. [CVE-2026-45409]

This might be of interest for security updates.


-- 
Navimatix GmbH           T: 03641 - 327 99 0
Tatzendpromenade 2       F: 03641 - 526 306
07745 Jena               www.navimatix.de

Geschäftsführer: Steffen Späthe, Jan Rommeley
Registergericht: Amtsgericht Jena, HRB 501480

[-- Attachment #2: smime.p7s --]
[-- Type: application/pkcs7-signature, Size: 5000 bytes --]

^ permalink raw reply	[flat|nested] only message in thread

only message in thread, other threads:[~2026-05-31 16:07 UTC | newest]

Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
     [not found] <18B4B2091480F9D8.111707@lists.openembedded.org>
2026-05-31 16:07 ` [OE-core] [PATCH v2] python3-idna: Upgrade 3.13 -> 3.17 #security Jörg Sommer

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.