Wind River Support Network

HomeDefectsLIN1021-4366
Fixed

LIN1021-4366 : Security Advisory - python-mako - CVE-2022-40023

Created: Sep 7, 2022    Updated: Dec 7, 2025
Resolved Date: Nov 27, 2025
Found In Version: 10.21.20.1
Fix Version: 10.21.20.26
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. This also affects babelplugin and linguaplugin.

CVEs

  • Linkedin
  • Facebook
  • Twitter
  • Youtube