79 matches found
MGASA-2021-0171 Updated python-bottle packages fix security vulnerability
Updated python-bottle packages fix security vulnerability: python-bottle before 0.12.19 is vulnerable to Web Cache Poisoning by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon ;, they can cause a difference in the interpretation of the...
OESA-2021-1067 python-bottle security update
Bottle is a fast, simple and lightweight WSGI micro web-framework for Python. It is distributed as a single file module and has no dependencies other than the Python Standard Library. Security Fixes: The package bottle from 0 and before 0.12.19 are vulnerable to Web Cache Poisoning by using a...
openSUSE Security Update : python-bottle (openSUSE-2021-302)
This update for python-bottle fixes the following issues : - CVE-2020-28473: Fixed Web Cache Poisoning vulnerability using parameter cloaking bsc1182181. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descriptive text and package checks i...
OPENSUSE-SU-2021:0302-1 Security update for python-bottle
This update for python-bottle fixes the following issues: - CVE-2020-28473: Fixed Web Cache Poisoning vulnerability using parameter cloaking bsc1182181. This update was imported from the SUSE:SLE-15:Update update project...
SUSE-SU-2021:0483-1 Security update for python-bottle
This update for python-bottle fixes the following issues: - CVE-2020-28473: Fixed Web Cache Poisoning vulnerability using parameter cloaking bsc1182181...
Security update for python-bottle (important)
openSUSE Security Update: Security update for python-bottle Announcement ID: openSUSE-SU-2021:0302-1 Rating: important References: 1182181 Cross-References: CVE-2020-28473 CVSS scores: CVE-2020-28473 NVD : 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H CVE-2020-28473 SUSE: 6.8...
Debian DLA-2531-1 : python-bottle security update
The package src:python-bottle before 0.12.19 are vulnerable to Web Cache Poisoning by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon ;, they can cause a difference in the interpretation of the request between the proxy running with...
Debian: Security Advisory (DLA-2531-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2531-1] python-bottle security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2531-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta January 24, 2021 https://wiki.debian.org/LTS -...
Fedora Update for python-bottle FEDORA-2018-909707fc68
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 27 : python-bottle (2018-6cb474b8ff)
Update to 0.12.13 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...
Fedora Update for python-bottle FEDORA-2018-6cb474b8ff
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 26 : python-bottle (2018-909707fc68)
Update to 0.12.13 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...
[SECURITY] Fedora 27 Update: python-bottle-0.12.13-1.fc27
Bottle is a fast and simple micro-framework for small web-applications. It offers request dispatching Routes with URL parameter support, Template s, a built-in HTTP Server and adapters for many third party WSGI/HTTP-server a nd template engines. All in a single file and with no dependencies other...
[SECURITY] Fedora 26 Update: python-bottle-0.12.13-1.fc26
Bottle is a fast and simple micro-framework for small web-applications. It offers request dispatching Routes with URL parameter support, Template s, a built-in HTTP Server and adapters for many third party WSGI/HTTP-server a nd template engines. All in a single file and with no dependencies other...
MGASA-2017-0031 Updated python-bottle packages fix security vulnerability
redirect in bottle.py in bottle 0.12.10 doesn't filter a "\r\n" sequence, which leads to a CRLF attack, as demonstrated by a redirect"233\r\nSet-Cookie: name=salt" call. CVE-2016-9964...
Updated python-bottle packages fix security vulnerability
redirect in bottle.py in bottle 0.12.10 doesn't filter a "\r\n" sequence, which leads to a CRLF attack, as demonstrated by a redirect"233\r\nSet-Cookie: name=salt" call. CVE-2016-9964...
[SECURITY] [DLA 761-2] python-bottle regression update
Package : python-bottle Version : 0.10.11-1+deb7u3 Debian Bug : 850176 The update for python-bottle issued as DLA 761-1 would cause a crash if a unicode string was used in a header. Updated packages are now available to correct this issue. For Debian 7 "Wheezy", these problems have been fixed in...
[SECURITY] [DSA 3743-2] python-bottle regression update
------------------------------------------------------------------------- Debian Security Advisory DSA-3743-2 [email protected] https://www.debian.org/security/ Sebastien Delafond January 15, 2017 https://www.debian.org/security/faq -...
DSA-3743-2 python-bottle - regression update
Bulletin has no description...