Package: python-pykmip | Debian Sources

Package: python-pykmip / 0.5.0-4+deb9u1

Metadata

Package	Version	Patches format
python-pykmip	0.5.0-4+deb9u1	3.0 (quilt)

Patch series

view the series file

Patch	File delta	Description
CVE 2018 1000872_Fix_a_denial of service_bug_by_setting_the_server_socket_timeout.patch \| (download)	kmip/services/server/server.py \| 6 6 + 0 - 0 ! kmip/tests/unit/services/server/test_server.py \| 6 5 + 1 - 0 ! 2 files changed, 11 insertions(+), 1 deletion(-)	cve-2018-1000872: fix a denial-of-service bug by setting the server socket timeout This change fixes a potential denial-of-service bug with the server, setting a default timeout for all server sockets. This allows the server to drop hung connections without blocking forever. The interrupt triggered during accept calls is expected and is now handled appropriately. Server unit tests have been updated to reflect this change.

Patch

File delta

Description

CVE 2018 1000872_Fix_a_denial of service_bug_by_setting_the_server_socket_timeout.patch | (download)

kmip/services/server/server.py | 6 6 + 0 - 0 !
kmip/tests/unit/services/server/test_server.py | 6 5 + 1 - 0 !
2 files changed, 11 insertions(+), 1 deletion(-)

 cve-2018-1000872: fix a denial-of-service bug by setting the server socket timeout
 This change fixes a potential denial-of-service bug with the
 server, setting a default timeout for all server sockets. This
 allows the server to drop hung connections without blocking
 forever. The interrupt triggered during accept calls is expected
 and is now handled appropriately. Server unit tests have been
 updated to reflect this change.