Merge pull request #9306 from haskell/cve-2023-43804

Upgrade urllib3 due to CVE-2023-43804
haskell · Oct 12, 2023 · 9f37325 · 9f37325
2 parents 2794dd8 + 4fdbdfe
commit 9f37325
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 2 deletions.
diff --git a/doc/requirements.in b/doc/requirements.in
@@ -6,3 +6,5 @@ sphinxnotes-strike
 Pygments >= 2.7.4
 # CVE-2023-37920
 certifi >= 2023.07.22
+# CVE-2023-43804
+urllib3 >= 2.0.6
diff --git a/doc/requirements.txt b/doc/requirements.txt
@@ -69,5 +69,7 @@ sphinxcontrib-serializinghtml==1.1.5
     # via sphinx
 sphinxnotes-strike==1.2
     # via -r requirements.in
-urllib3==2.0.2
-    # via requests
+urllib3==2.0.6
+    # via
+    #   -r requirements.in
+    #   requests