Bug 1200286 - (CVE-2022-31799) VUL-0: CVE-2022-31799: python-bottle: error mishandling during early request binding.
(CVE-2022-31799)
VUL-0: CVE-2022-31799: python-bottle: error mishandling during early request ...
Status: NEW
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Major
: ---
Assigned To: Matej Cepl
Security Team bot
https://smash.suse.de/issue/333382/
CVSSv3.1:SUSE:CVE-2022-31799:7.5:(AV:...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2022-06-07 13:35 UTC by Thomas Leroy
Modified: 2022-08-11 09:55 UTC (History)
3 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Thomas Leroy 2022-06-07 13:37:18 UTC
Affected:
- SUSE:SLE-15:Update/python-bottle      v0.12.13
Comment 2 Guang Yee 2022-07-20 20:31:35 UTC
Patch submitted https://build.opensuse.org/request/show/990452
Comment 3 Thomas Leroy 2022-08-11 08:38:09 UTC
Reassigning.
Matej, could you please submit to SUSE:SLE-15:Update? :)
Comment 4 John Paul Adrian Glaubitz 2022-08-11 09:20:29 UTC
(In reply to Thomas Leroy from comment #3)
> Reassigning.
> Matej, could you please submit to SUSE:SLE-15:Update? :)

Just submitted a fix.