Gnoppix Security released GSA-6302-1 for Starlette, a critical security update.
A path-traversal vulnerability allowed attackers to read arbitrary files on the server.
Which Versions Are Affected?
All Starlette versions before 0.46.2 are vulnerable.
Users running Gnoppix 23/25 and Gnoppix 25 must upgrade immediately.
What Is the Risk?
Exploiting this flaw can lead to unauthorized file disclosure.
Action required: Update to Starlette 0.46.2 or later without delay.
How to Upgrade
Run the standard package update command for your system.
The update marks this vulnerability as fixed. No workaround exists beyond patching. - Please update your systems.