Adding patchinfo patchinfo.20241205104818940237.90520734224241

2025-01-09 13:57:03 +01:00 · 2025-01-09 13:57:03 +01:00 · a7c9b92432
commit a7c9b92432
parent cdbc08fb87
3 changed files with 21 additions and 2 deletions
--- a/.gitmodules
+++ b/.gitmodules
@ -1944,7 +1944,7 @@
 	url = ../../pool/openjade
 [submodule "openjpeg2"]
 	path = openjpeg2
-	url = ../../pool/openjpeg2
+	url = ../../ALP-pool/openjpeg2
 [submodule "openldap2"]
 	path = openldap2
 	url = ../../ALP-pool/openldap2
--- a/2
+++ b/2
@ -1 +1 @@
-Subproject commit e1f827a6581b29f52a5eff4032c0b8202590b404
+Subproject commit 380edec9d00b05913125a42d5e4918bd89e76608
--- a/patchinfo.20241205104818940237.90520734224241/_patchinfo
+++ b/patchinfo.20241205104818940237.90520734224241/_patchinfo
@ -0,0 +1,19 @@
+<patchinfo>
+  <!-- generated from request(s) 353099 -->
+  <issue tracker="bnc" id="1232554">VUL-0: CVE-2024-49769: python-waitress: incorrect connection clean up leads to a busy-loop and resource exhaustion</issue>
+  <issue tracker="bnc" id="1232556">VUL-0: CVE-2024-49768: python-waitress: request processing race condition in HTTP pipelining with invalid first request when lookahead is enabled</issue>
+  <issue tracker="cve" id="2024-49768"/>
+  <issue tracker="cve" id="2024-49769"/>
+  <packager>nkrapp</packager>
+  <rating>important</rating>
+  <category>security</category>
+  <summary>Security update for python-waitress</summary>
+  <description>This update for python-waitress fixes the following issues:
+
+- CVE-2024-49768: Incorrect connection clean up leads to a busy-loop and resource exhaustion (bsc#1232556).
+- CVE-2024-49769: Request processing race condition in HTTP pipelining with invalid first request when lookahead is enabled (bsc#1232554).
+</description>
+  <package>python-waitress</package>
+  <package>python-waitress:doc</package>
+  <seperate_build_arch/>
+</patchinfo>