python-future (0.18.2-6ubuntu0.1) kinetic-security; urgency=medium * SECURITY UPDATE: ReDOS through Set-Cookie header - debian/patches/CVE-2022-40899.patch: Fix overlapping \s* regex groups in src/future/backports/http/cookiejar.py. - CVE-2022-40899 -- David Fernandez Gonzalez <email address hidden> Wed, 25 Jan 2023 09:26:47 +0100