[SECURITY] [DLA 3996-1] gunicorn security update
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3996-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Adrian Bunk
December 20, 2024 https://wiki.debian.org/LTS
- -------------------------------------------------------------------------
Package : gunicorn
Version : 20.1.0-1+deb11u1
CVE ID : CVE-2024-1135
Debian Bug : 1069126
HTTP Request Smuggling has been fixed in the Python WSGI HTTP Server Gunicorn.
For Debian 11 bullseye, this problem has been fixed in version
20.1.0-1+deb11u1.
We recommend that you upgrade your gunicorn packages.
For the detailed security status of gunicorn please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/gunicorn
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----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=xCQv
-----END PGP SIGNATURE-----
Reply to: