OESA-2024-2336

See a problem?
Please try reporting it to the source first.

Source

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-2336

Import Source

https://repo.openeuler.org/security/data/osv/OESA-2024-2336.json

JSON Data

https://api.osv.dev/v1/vulns/OESA-2024-2336

Upstream

CVE-2024-49768

Published

2024-11-01T11:09:32Z

Modified

2025-09-03T06:20:34.460561Z

Summary

python-waitress security update

Details

Waitress is meant to be a production-quality pure-Python WSGI server with very acceptable performance. It has no dependencies except ones which live in the Python standard library. It runs on CPython on Unix and Windows under Python 2.7+ and Python 3.5+. It is also known to run on PyPy 1.6.0+ on UNIX. It supports HTTP/1.0 and HTTP/1.1.

Security Fix(es):

(CVE-2024-49768)

Database specific

{
    "severity": "Critical"
}

References

Affected packages

openEuler:22.03-LTS-SP4 / python-waitress

Package

Name: python-waitress
Purl: pkg:rpm/openEuler/python-waitress&distro=openEuler-22.03-LTS-SP4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.0.0-4.oe2203sp4

Ecosystem specific

{
    "noarch": [
        "python3-waitress-2.0.0-4.oe2203sp4.noarch.rpm"
    ],
    "src": [
        "python-waitress-2.0.0-4.oe2203sp4.src.rpm"
    ]
}