Ubuntu alert USN-5625-2 (mako)

From:
               "Leonidas S. Barbosa" <leo.barbosa@canonical.com>
To:
               ubuntu-security-announce@lists.ubuntu.com
Subject:
               [USN-5625-2] Mako vulnerability
Date:
               Tue, 15 Nov 2022 18:24:24 -0300
Message-ID:
               <20221115212424.GA3208675@d4rkl41n>
==========================================================================
Ubuntu Security Notice USN-5625-2
November 15, 2022

mako vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.10

Summary:

Mako could be made to denial of service if it received a
specially crafted regular expression.

Software Description:
- mako: fast and lightweight templating for the Python platform

Details:

USN-5625-1 fixed a vulnerability in Mako. This update provides the corresponding updates for
Ubuntu 22.10.

Original advisory details:

 It was discovered that Mako incorrectly handled certain regular expressions.
 An attacker could possibly use this issue to cause a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.10:
  python3-mako                    1.1.3+ds1-3ubuntu2.1

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-5625-2
  https://ubuntu.com/security/notices/USN-5625-1
  CVE-2022-40023

Package Information:
  https://launchpad.net/ubuntu/+source/mako/1.1.3+ds1-3ubun...

From:		"Leonidas S. Barbosa" <leo.barbosa@canonical.com>
To:		ubuntu-security-announce@lists.ubuntu.com
Subject:		[USN-5625-2] Mako vulnerability
Date:		Tue, 15 Nov 2022 18:24:24 -0300
Message-ID:		<20221115212424.GA3208675@d4rkl41n>