https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=244279

--- Comment #10 from Sascha Biberhofer <po...@skyforge.at> ---
(In reply to Kubilay Kocak from comment #9)

Sorry for the delay. The synapse update is completely independent of the
updates in bug 245252 and bug 243602. This is particularly true for the
py-twisted update, otherwise I'd have bumped the dependency requirements. :)

We only depend on the JSON1 option of sqlite3 mention in bug 244366, so the
"depends on" information is still accurate.

However, as you've noted, we're still vulnerable to request smuggling without
the py-twisted update. This is however a different issue and probably more
suitably discussed in bug 245252, py-matrix-synapse 1.12.3 works with either
version.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
_______________________________________________
freebsd-python@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-python
To unsubscribe, send any mail to "freebsd-python-unsubscr...@freebsd.org"

Reply via email to