Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Syntax error in python3-gevent: fix CVE-2023-41419 #761

Open
IgorKha opened this issue Nov 15, 2023 · 1 comment
Open

Syntax error in python3-gevent: fix CVE-2023-41419 #761

IgorKha opened this issue Nov 15, 2023 · 1 comment

Comments

@IgorKha
Copy link

IgorKha commented Nov 15, 2023

Hello, a colon is missing in the patch code. Please fix it.

meta-openembedded/meta-python/recipes-devtools/python/python3-gevent/CVE-2023-41419.patch

Line 359 in 7da6cb8

+ except socket.error 

× gunicorn.service - gunicorn daemon (Web service loracross device)
     Loaded: loaded (/lib/systemd/system/gunicorn.service; enabled; preset: enabled)
     Active: failed (Result: exit-code) since Mon 2023-11-06 12:46:43 UTC; 3h 29min ago
    Process: 192 ExecStart=/usr/bin/gunicorn (code=exited, status=1/FAILURE)
   Main PID: 192 (code=exited, status=1/FAILURE)

Nov 06 12:46:42 napi-rk3308b-s gunicorn[192]:   File "/usr/lib/python3.10/site-packages/gunicorn/workers/ggevent.py", line 23, in <module>
Nov 06 12:46:42 napi-rk3308b-s gunicorn[192]:     from gevent import hub, monkey, socket, pywsgi
Nov 06 12:46:42 napi-rk3308b-s gunicorn[192]:   File "/usr/lib/python3.10/site-packages/gevent/pywsgi.py", line 1119
Nov 06 12:46:42 napi-rk3308b-s gunicorn[192]:     except socket.error
Nov 06 12:46:42 napi-rk3308b-s gunicorn[192]:                        ^
Nov 06 12:46:42 napi-rk3308b-s gunicorn[192]: SyntaxError: expected ':'
Nov 06 12:46:42 napi-rk3308b-s gunicorn[192]: ]
Nov 06 12:46:43 napi-rk3308b-s systemd[1]: gunicorn.service: Main process exited, code=exited, status=1/FAILURE
Nov 06 12:46:43 napi-rk3308b-s systemd[1]: gunicorn.service: Failed with result 'exit-code'.
Nov 06 12:46:43 napi-rk3308b-s systemd[1]: Failed to start gunicorn daemon (Web service loracross device).

patch commit: 6432fee
@akuster
Copy link
Contributor

akuster commented Nov 17, 2023

can you send a patch?

dylan-matthew-turner pushed a commit to dylan-matthew-turner/meta-openembedded that referenced this issue Dec 6, 2023
@ArchanaWind @akuster
tcpreplay: upgrade 4.4.2 -> 4.4.4
695fb5b 
This release contains bug fixes only.
The following CVEs have been addressed:

CVE-2023-27783
CVE-2023-27784
CVE-2023-27785
CVE-2023-27786
CVE-2023-27787
CVE-2023-27788
CVE-2023-27789

Changelog:
=========
dlt_jnpr_ether_cleanup: check subctx before cleanup by @Marsman1996 in openembedded#781
Bug openembedded#780 assert tcpedit dlt cleanup by @fklassen in openembedded#800
Fix bugs caused by strtok_r by @Marsman1996 in openembedded#783
Bug openembedded#782 openembedded#784 openembedded#785 openembedded#786 openembedded#787 openembedded#788 strtok r isuses by @fklassen in openembedded#801
Update en10mb.c by @david-guti in openembedded#793
PR openembedded#793 ip6 unicast flood by @fklassen in openembedded#802
Bug openembedded#719 fix overflow check for parse_mpls() by @fklassen in openembedded#804
PR openembedded#793 - update tests for corrected IPv6 MAC by @fklassen in openembedded#805
PR openembedded#793 - update tests for vlandel by @fklassen in openembedded#806
Feature openembedded#773 gh actions ci by @fklassen in openembedded#807
Feature openembedded#759: Upgrade autogen/libopts to 5.18.16 by @fklassen in openembedded#760
Bug openembedded#751 don't exit after send error by @fklassen in openembedded#761
Bug openembedded#750: configure: libpcap version robustness by @fklassen in openembedded#764
Bug openembedded#749 flow stats: avoid overstating flow packet count by @fklassen in openembedded#765
Bug openembedded#750 more libpcap version updates by @fklassen in openembedded#766
Bug openembedded#767 tests: support for out-of-tree tests by @fklassen in openembedded#768
Bug openembedded#750 - fix macOS test failure by @fklassen in openembedded#770
4.4.3 by @fklassen in openembedded#769 and openembedded#771

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
@annmko annmko mentioned this issue Feb 23, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@akuster @IgorKha