Request 758618: Submit python-waitress - openSUSE Build Service

Overview

Request 758618 accepted

- update to 1.4.0:
- Waitress used to slam the door shut on HTTP pipelined requests without
setting the ``Connection: close`` header as appropriate in the response. This
is of course not very friendly. Waitress now explicitly sets the header when
responding with an internally generated error such as 400 Bad Request or 500
Internal Server Error to notify the remote client that it will be closing the
connection after the response is sent.
- Waitress no longer allows any spaces to exist between the header field-name
and the colon. While waitress did not strip the space and thereby was not
vulnerable to any potential header field-name confusion, it should have sent
back a 400 Bad Request. See https://github.com/Pylons/waitress/issues/273
- CRLR handling Security fixes

Created by dirkmueller over 4 years ago
In state accepted

Submit python-waitress

Comments for request 758618 0

Login required, please login in order to comment

Request History

dirkmueller created request over 4 years ago

- update to 1.4.0:
- Waitress used to slam the door shut on HTTP pipelined requests without
setting the ``Connection: close`` header as appropriate in the response. This
is of course not very friendly. Waitress now explicitly sets the header when
responding with an internally generated error such as 400 Bad Request or 500
Internal Server Error to notify the remote client that it will be closing the
connection after the response is sent.
- Waitress no longer allows any spaces to exist between the header field-name
and the colon. While waitress did not strip the space and thereby was not
vulnerable to any potential header field-name confusion, it should have sent
back a 400 Bad Request. See https://github.com/Pylons/waitress/issues/273
- CRLR handling Security fixes

factory-auto added opensuse-review-team as a reviewer over 4 years ago

Please review sources

factory-auto accepted review over 4 years ago

Check script succeeded

licensedigger accepted review over 4 years ago

ok

dimstar_suse set openSUSE:Factory:Staging:B as a staging project over 4 years ago

Being evaluated by staging project "openSUSE:Factory:Staging:B"

dimstar_suse accepted review over 4 years ago

Picked "openSUSE:Factory:Staging:B"

dimstar accepted review over 4 years ago

dimstar_suse accepted review over 4 years ago

Staging Project openSUSE:Factory:Staging:B got accepted.

dimstar_suse approved review over 4 years ago

Staging Project openSUSE:Factory:Staging:B got accepted.

dimstar_suse accepted request over 4 years ago

Staging Project openSUSE:Factory:Staging:B got accepted.

openSUSE Build Service is sponsored by