Date: Mon, 20 Apr 2020 12:08:23 +0000 From: bugzilla-noreply@freebsd.org To: python@FreeBSD.org Subject: [Bug 244279] net-im/py-matrix-synapse: Update to 1.12.3 Message-ID: <bug-244279-21822-Z9lF3uVSkv@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-244279-21822@https.bugs.freebsd.org/bugzilla/> References: <bug-244279-21822@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D244279 --- Comment #10 from Sascha Biberhofer <ports@skyforge.at> --- (In reply to Kubilay Kocak from comment #9) Sorry for the delay. The synapse update is completely independent of the updates in bug 245252 and bug 243602. This is particularly true for the py-twisted update, otherwise I'd have bumped the dependency requirements. :) We only depend on the JSON1 option of sqlite3 mention in bug 244366, so the "depends on" information is still accurate. However, as you've noted, we're still vulnerable to request smuggling witho= ut the py-twisted update. This is however a different issue and probably more suitably discussed in bug 245252, py-matrix-synapse 1.12.3 works with either version. --=20 You are receiving this mail because: You are on the CC list for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-244279-21822-Z9lF3uVSkv>