Security: Pylons/waitress
Security Advisories
View information about security vulnerabilities from this repository's maintainers.
-
Uncaught Exception (due to a data race) leads to process terminationGHSA-f5x9-8jwc-25rw published
May 30, 2022 by digitalresistorLow -
Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') in waitressGHSA-4f7p-27jc-3c36 published
Mar 16, 2022 by digitalresistorHigh -
Catastrophic backtracking in regex allows Denial of ServiceGHSA-73m2-3pwg-5fgc published
Feb 3, 2020 by digitalresistorCritical -
HTTP Request Smuggling: Invalid whitespace characters in headers (Follow-up)GHSA-968f-66r5-5v74 published
Jan 2, 2020 by digitalresistorHigh -
HTTP Request Smuggling: Invalid whitespace characters in headersGHSA-m5ff-3wj3-8ph4 published
Dec 24, 2019 by digitalresistorHigh -
HTTP Request Smuggling: LF vs CRLF handling in WaitressGHSA-pg36-wpm5-g57p published
Dec 20, 2019 by digitalresistorCritical -
HTTP Request Smuggling: Invalid Transfer-EncodingGHSA-g2xc-35jw-c63p published
Dec 20, 2019 by digitalresistorCritical -
HTTP Request Smuggling: Content-Length Sent TwiceGHSA-4ppp-gpcr-7qf6 published
Dec 20, 2019 by digitalresistorCritical