Security Alert #10

github-actions · 2020-05-22T10:15:34Z

digite/rasa-dx-augment (debian 10.3)

Title	Severity	CVE	Package Name	Installed Version	Fixed Version	References
python: wrong backtracking in urllib.request.AbstractBasicAuthHandler allows for a ReDoS	HIGH	CVE-2020-8492	libpython2.7-minimal	2.7.16-2+deb10u1	N/A	http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00003.html https://bugs.python.org/issue39503 python/cpython#18284 https://python-security.readthedocs.io/vuln/urllib-basic-auth-regex.html https://security.gentoo.org/glsa/202005-09 https://security.netapp.com/advisory/ntap-20200221-0001/ https://usn.ubuntu.com/4333-1/ https://usn.ubuntu.com/4333-2/

* Strict Bot Training * Strict Bot Training * Merge branch 'master' of https://github.com/pmestry25/rasa-dx # Conflicts: # bot_trainer/api/app/routers/bot.py # tests/unit_test/data_processor/data_processor_test.py * Merge branch 'master' of https://github.com/pmestry25/rasa-dx # Conflicts: # bot_trainer/api/app/routers/bot.py # tests/unit_test/data_processor/data_processor_test.py Strict bot training 1. Added get training history route 2. Used Background Tasks for training 3. Added daily limit on model training * Strict bot training - formatting changes * Quality review changes * Quality review changes Co-authored-by: Purva Mestry <pmestry@digite.com>

github-actions bot added trivy vulnerability labels May 22, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Security Alert #10

Security Alert #10

github-actions bot commented May 22, 2020

Security Alert #10

Security Alert #10

Comments

github-actions bot commented May 22, 2020

digite/rasa-dx-augment (debian 10.3)