Updated python-waitress packages fix security vulnerabilities
Publication date: 12 Feb 2025Modification date: 12 Feb 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-49768 , CVE-2024-49769
Description
Waitress has a request processing race condition in HTTP pipelining with
an invalid first request. (CVE-2024-49768)
Waitress has a denial of service leading to high CPU usage/resource
exhaustion. (CVE-2024-49769)
References
SRPMS
9/core
- python-waitress-2.1.2-1.1.mga9