OPENSUSE-SU-2021:0435-1 Security update for python

This update for python fixes the following issues: - python27 was upgraded to 2.7.18 - CVE-2021-23336: Fixed a potential web cache poisoning by using a semicolon in query parameters use of semicolon as a query string separator bsc1182379. This update was imported from the SUSE:SLE-15:Update updat...

USN-4742-1 python-django vulnerability

It was discovered that Django incorrectly accepted semicolons as query parameters. A remote attacker could possibly use this issue to perform a Web Cache Poisoning attack...

cpython environment issue vulnerability

cpython is the Python Foundation's Python interpreter implemented in the C language. An environment issue vulnerability exists in cpython, which can be exploited to allow an attacker to separate query parameters using a semicolon ;, resulting in a malicious request being cached as a completely sa...

Tornado Environment Issue Vulnerability

Tornado is a Python web framework and asynchronous networking library from the Tornado community. The library scales to thousands of open connections through the use of non-blocking network I/O, making it ideal for long-time polling, WebSockets, and other applications that require long-term...