| Package | python-gevent |
|---|---|
| Version | 1.3.7-1+deb10u1 (buster) |
| Related CVEs | CVE-2023-41419 |
An issue in Gevent, a coroutine -based Python networking library, before version 23.9.0 allows a remote attacker to escalate privileges via a crafted script to the WSGIServer component.
For Debian 10 buster, these problems have been fixed in version 1.3.7-1+deb10u1.
We recommend that you upgrade your python-gevent packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.