Subject: CVS commit: pkgsrc/www/py-WebOb
From: Thomas Klausner
Date: 2024-08-19 23:09:46
Message id: 20240819210946.2DC25FC74@cvs.NetBSD.org
Log Message:
py-WebOb: update to 1.8.8.

1.8.8 (2024-08-13)
------------------

Security Fix
~~~~~~~~~~~~

- The use of WebOb's Response object to redirect a request to a new location
  can lead to an open redirect if the Location header is not a full URI.

  See https://github.com/Pylons/webob/security/advisories/GHSA-mg3v-6m49-jhp3
  and CVE-2024-42353

  Thanks to Sara Gao for the report
Files:
RevisionActionfile
1.17modifypkgsrc/www/py-WebOb/Makefile
1.13modifypkgsrc/www/py-WebOb/distinfo