5 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-1000164
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gunicorn version 19.4.5 contains a CWE-113: Improper Neutralization of CRLF Sequences in HTTP Headers vulnerability in processheaders function in...
RHEL 7 : python-gunicorn (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - python-gunicorn: Improper neutralization of CRLF Sequences http/wsgi.py:processheaders can allow an attacker to cau...
addok (>=0.1.0 <=0.5.0), aglow (>=0.1.0rc3 <=0.1.0rc4) +62 more potentially affected by CVE-2018-1000164 via gunicorn (>=0.17.2 <=19.4.5)
gunicorn PYPI version =0.17.2, =0.1.0, =0.1.0rc3, =0.1.0, =2022.9.19, =0.5.1, =1.0.0, =1.10.0, =1.10.3, =0.1.1, =2.0.0, =0.1.0, =0.1.0, =5.0.0, =6.3.0 and more Source cves: CVE-2018-1000164 Source advisory: OSV:GHSA-32PC-XPHX-Q4F6...
[SECURITY] [DSA 4186-1] gunicorn security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4186-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 28, 2018 https://www.debian.org/security/faq -...
openSUSE Security Update : python-gunicorn / python3-gunicorn (openSUSE-2018-369)
This update for python-gunicorn, python3-gunicorn fixes the following issues : - CVE-2018-1000164: Improper neutralization of CRLF Sequences allow tricking the server to return arbitrary HTTP headers boo1088613 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...