First published: Tue Oct 08 2024(Updated: )
gevent is a coroutine-based Python networking library that uses greenlet to provide a high-level synchronous API on top of libevent event loop. Features include: * convenient API around greenlets * familiar synchronization primitives (gevent.event, gevent.queue) * socket module that cooperates * WSGI server on top of libevent-http * DNS requests done through libevent-dns * monkey patching utility to get pure Python modules to cooperate<br>Security Fix(es):<br><li> python-gevent: privilege escalation via a crafted script to the WSGIServer component (CVE-2023-41419)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Software | Affected Version | How to fix |
---|---|---|
Red Hat Red Hat Enterprise Linux Server - AUS | ||
redhat/python-gevent | <1.2.2-5.el8_2 | 1.2.2-5.el8_2 |
redhat/python-gevent-debugsource | <1.2.2-5.el8_2 | 1.2.2-5.el8_2 |
redhat/python3-gevent | <1.2.2-5.el8_2 | 1.2.2-5.el8_2 |
redhat/python3-gevent-debuginfo | <1.2.2-5.el8_2 | 1.2.2-5.el8_2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.