From 0062be5470e06d7a76ff71b5bdd8fe11d80367500be873154488b239c5fbf960 Mon Sep 17 00:00:00 2001 From: Dirk Mueller Date: Wed, 6 Sep 2023 20:31:17 +0000 Subject: [PATCH] - update to version 0.12.20 (bsc#1200286, CVE-2022-31799): * obsoletes 0002_Gracefully_handle_errors_during_early_request_binding.patch in older dists - update to version 0.12.19 (bsc#1182181, CVE-2020-28473): * obsoletes 0001_Do_not_split_query_strings_on_semicolon_anymore.patch in older dists OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-bottle?expand=0&rev=51 --- python-bottle.changes | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/python-bottle.changes b/python-bottle.changes index 892fdc8..7c1f96e 100644 --- a/python-bottle.changes +++ b/python-bottle.changes @@ -58,9 +58,10 @@ Thu May 26 20:41:56 UTC 2022 - Benoît Monin - update to version 0.12.21: bugfix release * Fix: Bad deprecation warning in cherrypy server adapter -- update to version 0.12.20: security fix +- update to version 0.12.20 (bsc#1200286, CVE-2022-31799): * fix: Multipart file uploads with empty filename not detected as binary + * obsoletes 0002_Gracefully_handle_errors_during_early_request_binding.patch in older dists * fix auth_basic decorator (#586) * Add ServerAdapter for CherryPy >= 9 * Gracefully handle errors during early request binding @@ -68,7 +69,8 @@ Thu May 26 20:41:56 UTC 2022 - Benoît Monin ------------------------------------------------------------------- Fri Nov 13 17:49:59 UTC 2020 - Benoît Monin -- update to version 0.12.19: bugfix release +- update to version 0.12.19 (bsc#1182181, CVE-2020-28473): + * obsoletes 0001_Do_not_split_query_strings_on_semicolon_anymore.patch in older dists * Do not split query strings on `;` anymore. * Fix the Allow: header value in 405 "Method not allowed." response.