rpms/python-urllib3
3
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Update to 1.26.18.

Browse source 
Mitigates CVE-2023-45803 / GHSA-g4mx-q9vg-27p4.

Ref: https://github.com/advisories/GHSA-g4mx-q9vg-27p4
This commit is contained in:
Maxwell G 2023-10-17 15:28:43 -05:00
commit 0502dda222
No known key found for this signature in database
GPG key ID: F79E4E25E8C661F8
3 changed files with 8 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

8
python-urllib3.spec
View file

@ -9,8 +9,8 @@
%endif
Name: python-urllib3
Version: 1.26.17
Release: 2%{?dist}
Version: 1.26.18
Release: 1%{?dist}
Summary: HTTP library with thread-safe connection pooling, file post, and more
# SPDX
@ -168,6 +168,10 @@ ignore="${ignore-} --ignore=test/test_no_ssl.py"
%changelog
* Tue Oct 17 2023 Maxwell G <maxwell@gtmx.me> - 1.26.18-1
- Update to 1.26.18.
- Mitigates CVE-2023-45803 / GHSA-g4mx-q9vg-27p4.
* Mon Oct 09 2023 Miro Hrončok <mhroncok@redhat.com> - 1.26.17-2
- Switch the hardcoded dependency on urllib3[socks] to a weak one