Ubuntu Security Notice 5625-2 - USN-5625-1 fixed a vulnerability in Mako. This update provides the corresponding updates for Ubuntu 22.10. It was discovered that Mako incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause a denial of service.
d0c94eb60f485507cd673ee2a45008fbb6bdc42fdf1dd8d2faebbf24827ab77e
=========================================================================
Ubuntu Security Notice USN-5625-2
November 15, 2022
mako vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 22.10
Summary:
Mako could be made to denial of service if it received a
specially crafted regular expression.
Software Description:
- mako: fast and lightweight templating for the Python platform
Details:
USN-5625-1 fixed a vulnerability in Mako. This update provides the corresponding updates for
Ubuntu 22.10.
Original advisory details:
It was discovered that Mako incorrectly handled certain regular expressions.
An attacker could possibly use this issue to cause a denial of service.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 22.10:
python3-mako 1.1.3+ds1-3ubuntu2.1
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-5625-2
https://ubuntu.com/security/notices/USN-5625-1
CVE-2022-40023
Package Information:
https://launchpad.net/ubuntu/+source/mako/1.1.3+ds1-3ubuntu2.1