waitress: python-waitress: request processing race condition in HTTP pipelining with invalid first request

A flaw was found in the Waitress WSGI server for Python. A remote client can send a request that is exactly recvbytes, which defaults to 8192 long, followed by a secondary request using HTTP pipelining. When request lookahead is disabled default, Waitress won't read any more requests, and when th...

[SECURITY] [DLA 3000-1] waitress security update

Debian LTS Advisory DLA-3000-1 [email protected] https://www.debian.org/lts/security/ Stefano Rivera May 12, 2022 https://wiki.debian.org/LTS Package : waitress Version : 1.0.1-1+deb9u1 CVE ID : CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2022-24761 Debian Bug :...

Waitress environmental vulnerability (CNVD-2020-18632)

Waitress is a WSGI Web Server Gateway Interface server for Python. Waitress is vulnerable to an environmental issue. The vulnerability stems from an unreasonable environmental factor in a networked system or product. Detailed vulnerability details are not available at this time...