783 matches found
Medium: python-urllib3
Issue Overview: A flaw was found in python-urllib3. The HTTPConnection.request does not properly validate CRLF sequences in the HTTP request method, potentially allowing manipulation of the request by injecting additional HTTP headers. The highest threat from this vulnerability is to...
SUSE SLED15 / SLES15 Security Update : python-urllib3 (SUSE-SU-2021:2012-1)
The remote SUSE Linux SLED15 / SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2021:2012-1 advisory. - An issue was discovered in urllib3 before 1.26.5. When provided with a URL containing many @ characters in the authority component, the...
Fedora: Security Advisory for mingw-python-urllib3 (FEDORA-2021-b14975e43d)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE: Security Advisory (SUSE-SU-2021:2012-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2021:2012-1 Security update for python-urllib3
This update for python-urllib3 fixes the following issues: - CVE-2021-33503: Fixed a denial of service when the URL contained many @ characters in the authority component bsc1187045...
Debian: Security Advisory (DLA-2686-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2686-1] python-urllib3 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2686-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA June 15, 2021 https://wiki.debian.org/LTS -...
DLA-2686-1 python-urllib3 - security update
Bulletin has no description...
SUSE: Security Advisory (SUSE-SU-2019:0139-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:3723-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2019:2331-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2019:2370-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[ASA-202106-25] python-urllib3: denial of service
Arch Linux Security Advisory ASA-202106-25 ========================================== Severity: Medium Date : 2021-06-09 CVE-ID : CVE-2021-33503 Package : python-urllib3 Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-2038 Summary ======= The package python-urllib3...
SUSE: Security Advisory (SUSE-SU-2019:2332-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-33503
A flaw was found in python-urllib3. When provided with a URL containing many @ characters in the authority component, the authority's regular expression exhibits catastrophic backtracking. This flaw causes a denial of service if a URL is passed as a parameter or redirected via an HTTP redirect. T...
Important Photon OS Security Update - PHSA-2021-3.0-0246
Updates of 'python-urllib3', 'libxml2' packages of Photon OS have been released...
Important Photon OS Security Update - PHSA-2021-0246
Updates of 'python-urllib3', 'libxml2' packages of Photon OS have been released...
Oracle Linux 8 : python-urllib3 (ELSA-2021-1631)
The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2021-1631 advisory. 1.24.2-5.0.1 - set RECENTDATE to 01/30/2019 to make checks happy Orabug: 30228991 1.24.2-5 - Security fix for CVE-2020-26137 Resolves: rhbz1883889 Tenable has...
CentOS 8 : python-urllib3 (CESA-2021:1631)
The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2021:1631 advisory. - python-urllib3: CRLF injection via HTTP request method CVE-2020-26137 Note that Nessus has not tested for this issue but has instead relied only on the...
RHEL 8 : python-urllib3 (RHSA-2021:1631)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2021:1631 advisory. The python-urllib3 package provides the Python HTTP module with connection pooling and file POST abilities. Security Fixes: python-urllib3: CRLF...