New Debian python-tornado 6.2.0-3+deb12u1 fixes: This update addresses the following issues: * python-tornado: open redirect vulnerability in StaticFileHandler under certain configurations (CVE-2023-28370) * python-tornado: Tornado has HTTP cookie parsing DoS vulnerability (CVE-2024-52804)
--- mirror/ftp/pool/main/p/python-tornado/python-tornado_6.2.0-3.dsc +++ apt/ucs_5.2-0-errata5.2-0/source/python-tornado_6.2.0-3+deb12u1.dsc @@ -1,3 +1,19 @@ +6.2.0-3+deb12u1 [Tue, 31 Dec 2024 01:53:59 +0100] Daniel Leidert <dleidert@debian.org>: + + * Non-maintainer upload by the Debian LTS team. + * d/patches/CVE-2024-52804.patch: Fix CVE-2024-52804 (closes: #1088112). + - The algorithm used for parsing HTTP cookies in Tornado versions prior to + 6.4.2 sometimes has quadratic complexity, leading to excessive CPU + consumption when parsing maliciously-crafted cookie headers. This + parsing occurs in the event loop thread and may block the processing of + other requests. + * d/patches/CVE-2023-28370-1.patch, + d/patches/CVE-2023-28370-2.patch: Fix CVE-2023-28370 (closes: #1036875). + - Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows + a remote unauthenticated attacker to redirect a user to an arbitrary web + site and conduct a phishing attack by having user access a specially + crafted URL. + 6.2.0-3 [Sun, 20 Nov 2022 12:24:11 +0000] Jelmer Vernooij <jelmer@debian.org>: [ Debian Janitor ] <http://piuparts.knut.univention.de/5.2-0/#3322161474033559872>
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [5.2-0] 6b92ff5e36 Bug #57918: python-tornado 6.2.0-3+deb12u1 doc/errata/staging/python-tornado.yaml | 16 ++++++++++++++++ 1 file changed, 16 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.2x14>
*** Bug 58546 has been marked as a duplicate of this bug. ***