(RHSA-2020:1091) Moderate: python-twisted-web security update

2020-03-31T13:17:30
ID RHSA-2020:1091
Type redhat
Reporter RedHat
Modified 2020-03-31T14:11:14

Description

Twisted is an event-based framework for internet applications. Twisted Web is a complete web server, aimed at hosting web applications using Twisted and Python, but fully able to serve static pages too.

Security Fix(es):

  • python-twisted: Improper neutralization of CRLF characters in URIs and HTTP methods (CVE-2019-12387)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.8 Release Notes linked from the References section.