AZL-44730 CVE-2012-6708 affecting package python-httplib2 0.20.3-3

jQuery before 1.9.0 is vulnerable to Cross-site Scripting XSS attacks. The jQuerystrInput function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '' character anywhere in the string, giving...

Fedora Update for python-httplib2 FEDORA-2015-5503

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 22 : python-httplib2-0.9-6.fc22 (2015-5503)

Add patch to fix http over proxy. Fixes bug 857514 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

openSUSE Security Update : python-httplib2 (openSUSE-SU-2013:0977-1)

This update of python-httplib2 fixed broken SSL certification verification. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-415. The text description of this plugin is C SUSE LLC...

openSUSE Security Update : python-httplib2 (openSUSE-SU-2012:0787-1)

python-httplib2 used to ship it's own copy of Mozilla NSS certificates, but should use the system-wide ones instead. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-340. The text...

Ubuntu Update for python-httplib2 USN-1948-1

Check for the Version of python-httplib2 OpenVAS Vulnerability Test $Id: gbubuntuUSN19481.nasl 8494 2018-01-23 06:57:55Z teissa $ Ubuntu Update for python-httplib2 USN-1948-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program...

Ubuntu: Security Advisory (USN-1948-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 : python-httplib2 vulnerability (USN-1948-1)

It was discovered that httplib2 only validated SSL certificates on the first request to a connection, and didn't report validation failures on subsequent requests. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could possibly be exploited in certain scenarios to...

USN-1948-1: httplib2 vulnerability

It was discovered that httplib2 only validated SSL certificates on the first request to a connection, and didn't report validation failures on subsequent requests. If a remote attacker were able to perform a machine-in-the-middle attack, this flaw could possibly be exploited in certain scenarios ...

[ MDVSA-2013:168 ] python-httplib2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:168 http://www.mandriva.com/en/support/security/ Package : python-httplib2 Date : May 27, 2013 Affected: Business Server 1.0 Problem Description: Updated python-httplib2 packages fix security vulnerability:...

Mandriva Linux Security Advisory : python-httplib2 (MDVSA-2013:168)

Updated python-httplib2 packages fix security vulnerability : httplib2 only validates SSL certificates on the first request to a connection, and doesn't report validation failures on subsequent requests CVE-2013-2037. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

Mandriva Linux Security Advisory : python-httplib2 (MDVSA-2013:119)

python-httplib2 ships its own copy of the Mozilla NSS certificates, but it should use the system-wide ones provided by the rootcerts package instead. This has been corrected. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

Ubuntu Update for python-httplib2 USN-1375-1

Ubuntu Update for Linux kernel vulnerabilities USN-1375-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13751.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for python-httplib2 USN-1375-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH,...

Ubuntu: Security Advisory (USN-1375-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 'ubuntuone-couch'包SSL证书校验信息泄露漏洞

Ubuntu是一款基于linux内核的操作系统 ubuntuone-couch使用python-httplib2，但是0.7.0之前的python-httplib2没有对服务器证书进行校验，可导致中间人攻击获得或更改敏感数据 0 Ubuntu ubuntuone-couch Ubuntu Ubuntu Linux 11.10 i386 Ubuntu Ubuntu Linux 11.10 amd64 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息：...

Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : python-httplib2 vulnerability (USN-1375-1)

The httplib2 Python library earlier than version 0.7.0 did not perform any server certificate validation when using HTTPS connections. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to alter or compromise confidential information in applications...