Source: python-scrapy Version: 2.13.4-1 Severity: important Tags: security X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]> Control: block -1 with 1122212
Hi The bump of python-scrapy adds support to mitigate CVE-2025-6176. But to be effective the brotli dependency needs to be bumped to the version which adds support for limiting output size in Python streaming decompression (Cf #1122212). Regards, Salvatore
