29 May
2024
29 May
'24
7:22 p.m.
On Tue, May 21, 2024 at 04:32:53PM -0600, Tom Rini wrote:
The issue described in https://github.com/psf/requests/pull/6655 has been assigned as a security issue. While unlikely to be exploited in our usage, update to the current release to fix it.
Reported-by: GitHub dependabot Signed-off-by: Tom Rini trini@konsulko.com
I'm NAK'ing this version of the patch as upstream has now "yanked" 2.23.0 and 2.23.1, and 2.23.2 was released on May 21st and 2.23.3 today. I'll revisit this issue later once things seem to have settled down.
--
Tom