Bugs fixes in "python-urllib3"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2019-11236 | In the urllib3 library through 1.24.1 for Python, CRLF injection is possible if the attacker controls the request parameter. | 2019-05-21 |
| CVE | CVE-2018-20060 | urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect (i.e., a redirect that differs in ho | 2019-05-21 |
| CVE | CVE-2019-11236 | In the urllib3 library through 1.24.1 for Python, CRLF injection is possible if the attacker controls the request parameter. | 2019-05-21 |
| CVE | CVE-2018-20060 | urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect (i.e., a redirect that differs in ho | 2019-05-21 |
| CVE | CVE-2019-11324 | The urllib3 library before 1.24.2 for Python mishandles certain cases where the desired set of CA certificates is different from the OS store of CA c | 2019-05-21 |
| CVE | CVE-2019-11236 | In the urllib3 library through 1.24.1 for Python, CRLF injection is possible if the attacker controls the request parameter. | 2019-05-21 |
| CVE | CVE-2018-20060 | urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect (i.e., a redirect that differs in ho | 2019-05-21 |
| CVE | CVE-2019-11324 | The urllib3 library before 1.24.2 for Python mishandles certain cases where the desired set of CA certificates is different from the OS store of CA c | 2019-05-21 |
| CVE | CVE-2019-11236 | In the urllib3 library through 1.24.1 for Python, CRLF injection is possible if the attacker controls the request parameter. | 2019-05-21 |
| CVE | CVE-2018-20060 | urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect (i.e., a redirect that differs in ho | 2019-05-21 |
| Launchpad | 1771988 | certificate validation with IP address based SAN's fails | 2018-08-30 |
| Launchpad | 1771988 | certificate validation with IP address based SAN's fails | 2018-08-22 |
| Launchpad | 1578351 | mitaka ksclient fails to connect to v6 keystone | 2016-05-19 |
| Launchpad | 1578351 | mitaka ksclient fails to connect to v6 keystone | 2016-05-12 |
| Launchpad | 1500768 | python3.4.3 SRU break requests | 2015-10-20 |
| Launchpad | 1500768 | python3.4.3 SRU break requests | 2015-10-12 |
| Launchpad | 1348954 | update Python3 for trusty | 2015-04-15 |
| Launchpad | 1348954 | update Python3 for trusty | 2015-03-27 |
| Launchpad | 1412545 | proxy isn't used after a dropped connection | 2015-02-09 |
| Launchpad | 1412545 | proxy isn't used after a dropped connection | 2015-01-28 |
About
-
Send Feedback to @ubuntu_updates
