python-oauthlib 3.2.0-1ubuntu1 source package in Ubuntu

Changelog

python-oauthlib (3.2.0-1ubuntu1) kinetic; urgency=medium

  * SECURITY UPDATE: DoS via malicious redirect uri
    - debian/patches/CVE-2022-36087-1.patch: add check of performance of
      ipv6 check in tests/test_uri_validate.py.
    - debian/patches/CVE-2022-36087-2.patch: fix IPV6 regex used to check
      redirect_uri in oauthlib/uri_validate.py, tests/test_uri_validate.py.
    - CVE-2022-36087

 -- Marc Deslauriers <email address hidden>  Fri, 16 Sep 2022 10:26:11 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Kinetic
Original maintainer:
Ubuntu Developers
Architectures:
all
Section:
python
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Kinetic: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
python-oauthlib_3.2.0.orig.tar.gz 160.0 KiB 23a8208d75b902797ea29fd31fa80a15ed9dc2c6c16fe73f5d346f83f6fa27a2
python-oauthlib_3.2.0-1ubuntu1.debian.tar.xz 5.9 KiB 2d1039e1b3bd0eccdb8a10db606f6662518aab3a16ce7ecf5f753b58c310b3f2
python-oauthlib_3.2.0-1ubuntu1.dsc 2.2 KiB a82d1b56455c4a0756b11c548f18729912956da0d0deecd6d58d50785cf0afe9

View changes file

Binary packages built by this source

python3-oauthlib: generic, spec-compliant implementation of OAuth for Python3

 OAuthLib is a generic utility which implements the logic of OAuth without
 assuming a specific HTTP request object. It can be used to graft OAuth support
 onto HTTP libraries.
 .
 OAuth 1 is fully supported per the RFC for both clients and providers.
 .
 OAuth 2 client and provider support for:
 .
   - Authorization Code Grant
   - Implicit Grant
   - Client Credentials Grant
   - Resource Owner Password Credentials Grant
   - Refresh Tokens
   - Bearer Tokens
   - Draft MAC tokens
   - Token Revocation
   - OpenID Connect Authentication
 .
 This package contains the Python 3 version of the library.