4 matches found
Astra Linux - ΡΡΠ·Π²ΠΈΠΌΠΎΡΡΡ Π² python-tornado
Tornado is a Python web framework and asynchronous networking library. In versions of Tornado prior to 6.5.5, the only limitation on the number of parts in multipart/form-data was the maxbodysize setting default: 100MB. Since parsing occurs synchronously on the main thread, this created a potenti...
a-mailx (=0.1.0), abracadabra (>=0.0.0 <=0.0.7) +653 more potentially affected by CVE-2025-67724 via tornado (>=6.0.0 <=6.5.2)
tornado PYPI version =6.0.0, =0.0.0, =0.7.3, =0.0.5, =1.0.0, =1.0.0, =0.31.0, =1.3.0, =0.1.23, =0.0.9.1, =0.20.0, =0.9.5, =22.5.13, =25.12.0 and more Source cves: CVE-2025-67724 Source advisory: SNYK:PYTHON-TORNADO-14400978...
OESA-2025-1614 python-tornado security update
Tornado is an open source version of the scalable, non-blocking web server and tools. Security Fixes: Tornado is a Python web framework and asynchronous networking library. When Tornado's multipart/form-data parser encounters certain errors, it logs a warning but continues trying to parse the...
DEBIAN-CVE-2023-28370
Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having user access a specially crafted URL...