Request 1226139: Submit python-tornado6 - openSUSE Build Service

Overview

Request 1226139 review

- Update to 6.4.2:
+ Security Improvements:
* Parsing of the cookie header is now much more efficient. The older
algorithm sometimes had quadratic performance which allowed for a
denial-of-service attack in which the server would spend excessive
CPU time parsing cookies and block the event loop.
(CVE-2024-52804, bsc#1233668)

Created by StevenK about 4 hours ago
In state review
Open review for factory-staging
Open review for opensuse-review-team

Submit python-tornado6

Comments for request 1226139 0

Login required, please login in order to comment

Request History

StevenK created request about 4 hours ago

- Update to 6.4.2:
+ Security Improvements:
* Parsing of the cookie header is now much more efficient. The older
algorithm sometimes had quadratic performance which allowed for a
denial-of-service attack in which the server would spend excessive
CPU time parsing cookies and block the event loop.
(CVE-2024-52804, bsc#1233668)

factory-auto added opensuse-review-team as a reviewer about 4 hours ago

Please review sources

factory-auto accepted review about 4 hours ago

Check script succeeded

licensedigger accepted review about 2 hours ago

The legal review is accepted preliminary. The package may require actions later on.

openSUSE Build Service is sponsored by