-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3116-1 debian-...@lists.debian.org https://www.debian.org/lts/security/ Emilio Pozuelo Monfort September 21, 2022 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : mako Version : 1.0.7+ds1-1+deb10u1 CVE ID : CVE-2022-40023 It was found that Mako, a Python template library, was vulnerable to a denial of service attack via crafted regular expressions. For Debian 10 buster, this problem has been fixed in version 1.0.7+ds1-1+deb10u1. We recommend that you upgrade your mako packages. For the detailed security status of mako please refer to its security tracker page at: https://security-tracker.debian.org/tracker/mako Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAmMrNlMACgkQnUbEiOQ2 gwIrMQ/9HoqyNwsyB3j7ssa4aga0Z+L8AIlLTY80W72CxvyDA+R/hRJN6xNQtR9O SFgM1RaDJGyLTOl5jueRHamTjCtxOfW8X9bmP3/ZIBFVmB1pawDbqhIaBLMYpqBd +x7y0QVOroEDnqoMnB7enIstTBXplJR3F6+/urL1skmsfZBMRUUl7dQsNDm1MWlo /YtQRMn3ghfh0DkmiiDkL1PCabz7w49PBzAqSGB64P5zfTUWB+wuCEmbf42ENNmV 0V92NvUHjY1JuDqEbSoGbCUCk2kcIOAIW5FoF0XtzK+fRJcswPHRwRX7dNLOLDPY BRuYlqGB9FTH3vIDVKcvn0NU58dHfzOkvWIQz14CFRKtqZgJNf2Lw3FIzdYyhnVE uPU9rfk0QJno0orI6Gfktg34/IfYR0l0Mx2mP4VsNE9Qt0/sEXQWZOdD6yQ3ENig qBAf3+cBDyfgecPJhTHKb8p6BYI7RWeTbj0trDIJJfb/f96YgcYrq4Nv9ishU8FB GnheHzVqOgOM+Ej+xiHZpMBrHDYRUBvVorGIsjJZnKc1IW/Yt7W1oLsKDa7jLcx0 kRLzvEB8OvMkHBscESD+ZylYP1HHOJYi0OfwKhsnb3GU/2KQib7T30ZRxYQvDqBz FIgU9AHItDkP9Ly37Ui8tDtZ7/iVhm1h31c/Gm2XnOddaFmkExw= =bkZq -----END PGP SIGNATURE-----