CVE-2023-32681

Advisory

Descarteslabs version 3.0.2 has updated its minimum required version of the requests library to 2.31.0, previously set at 2.28.1 or higher. This upgrade addresses the security issue identified as CVE-2023-32681.
https://github.com/descarteslabs/descarteslabs-python/commit/bc51d674b7245c708e49080f3819d66ecc88fab5

Affected package

Affected versions

Fixed versions

Vulnerability changelog

Vector

- Fixed a bug in `Table.visualize()` which could cause Authorization (401) errors when rendering tiles into an `ipyleaflet.Map`.

General

- Bumped some minimum dependency version constraints to avoid security vulnerabilities.

Resources

• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32681