CVE-2022-31799 (https://github.com/bottlepy/bottle/compare/0.12.19...0.12.20): https://github.com/bottlepy/bottle/commit/e140e1b54da721a660f2eb9d58a106b7b3ff2f00 https://github.com/bottlepy/bottle/commit/a2b0ee6bb4ce88895429ec4aca856616244c4c4c Bottle before 0.12.20 mishandles errors during early request binding. Not sure about impact here, but please stabilize 0.12.20.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=89d70a2cd8b7d103af0ac4d04584e653de36a0ab commit 89d70a2cd8b7d103af0ac4d04584e653de36a0ab Author: Michał Górny <mgorny@gentoo.org> AuthorDate: 2022-06-03 06:13:18 +0000 Commit: Michał Górny <mgorny@gentoo.org> CommitDate: 2022-06-03 06:14:04 +0000 dev-python/bottle: Remove old Bug: https://bugs.gentoo.org/849398 Signed-off-by: Michał Górny <mgorny@gentoo.org> dev-python/bottle/Manifest | 2 -- dev-python/bottle/bottle-0.12.19-r1.ebuild | 55 ------------------------------ dev-python/bottle/bottle-0.12.19.ebuild | 47 ------------------------- dev-python/bottle/bottle-0.12.20.ebuild | 55 ------------------------------ 4 files changed, 159 deletions(-)
Thanks, all done!