- ------------------------------------------------------------------------- Debian LTS Advisory DLA-3116-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort September 21, 2022 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : mako Version : 1.0.7+ds1-1+deb10u1 CVE ID : CVE-2022-40023 It was found that Mako, a Python template library, was vulnerable to a denial of service attack via crafted regular expressions. For Debian 10 buster, this problem has been fixed in version 1.0.7+ds1-1+deb10u1. We recommend that you upgrade your mako packages. For the detailed security status of mako please refer to its security tracker page at: https://security-tracker.debian.org/tracker/mako Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS