OESA-2024-2333

See a problem?
Please try reporting it to the source first.

Source

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-2333

Import Source

https://repo.openeuler.org/security/data/osv/OESA-2024-2333.json

JSON Data

https://api.osv.dev/v1/vulns/OESA-2024-2333

Upstream

CVE-2024-49768

Published

2024-11-01T11:09:32Z

Modified

2025-09-03T06:20:34.280656Z

Summary

python-waitress security update

Details

Waitress is meant to be a production-quality pure-Python WSGI server with very acceptable performance. It has no dependencies except ones which live in the Python standard library. It runs on CPython on Unix and Windows under Python 2.7+ and Python 3.5+. It is also known to run on PyPy 1.6.0+ on UNIX. It supports HTTP/1.0 and HTTP/1.1.

Security Fix(es):

(CVE-2024-49768)

Database specific

{
    "severity": "Critical"
}

References

Affected packages

openEuler:22.03-LTS-SP3 / python-waitress

Package

Name: python-waitress
Purl: pkg:rpm/openEuler/python-waitress&distro=openEuler-22.03-LTS-SP3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.0.0-4.oe2203sp3

Ecosystem specific

{
    "src": [
        "python-waitress-2.0.0-4.oe2203sp3.src.rpm"
    ],
    "noarch": [
        "python3-waitress-2.0.0-4.oe2203sp3.noarch.rpm"
    ]
}