stable

python-fastapi-0.92.0-1.fc38 and python-starlette-0.25.0-1.fc38

FEDORA-2023-9d50269499 created by music 4 months ago for Fedora 38

python-starlette 0.25.0

Fixed

  • Limit the number of fields and files when parsing multipart/form-data on the MultipartParser

python-fastapi 0.92.0

🚨 This is a security fix. Please upgrade as soon as possible.

Upgrades

  • ⬆ Upgrade Starlette to 0.25.0.
    • This solves a vulnerability that could allow denial of service attacks by using many small multipart fields/files (parts), consuming high CPU and memory.
    • Only applications using forms (e.g. file uploads) could be affected.
    • For most cases, upgrading won't have any breaking changes.

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2023-9d50269499

This update's test gating status has been changed to 'waiting'.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update has been submitted for stable by bodhi

4 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Builds
2
python-fastapi-0.92.0-1.fc38
python-starlette-0.25.0-1.fc38
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
0 days
Dates
submitted
4 months ago
in testing
4 months ago
in stable
4 months ago
approved
4 months ago
BZ#2169669 python-fastapi-0.92.0 is available
0
0
python-fastapi-0.92.0-1.fc38
python-starlette-0.25.0-1.fc38

Automated Test Results

Copyright © 2007-2023 Red Hat, Inc. and others.

Running bodhi-server 7.2.0 on bodhi-web-77-bjd24.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy