Package "requests"

Name:	requests
Description:	This package is just an umbrella for a group of other packages, it has no description. Description samples from packages in group: elegant and simple HTTP library for Python, built for human beings elegant and simple HTTP library for Python, built for human beings elegant and simple HTTP library for Python3, built for human beings
Latest version:	2.2.1-1ubuntu0.4
Release:	trusty (14.04)
Level:	updates
Repository:	main

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Other versions of "requests" in Trusty

Repository	Area	Version
base	main	2.2.1-1
security	main	2.2.1-1ubuntu0.4

Packages in group

Deleted packages are displayed in grey.

Changelog

Version: 2.2.1-1ubuntu0.4 2018-10-15 14:06:19 UTC

requests (2.2.1-1ubuntu0.4) trusty-security; urgency=medium * SECURITY UPDATE: Creadentials through HTTP Authorization header - debian/patches/CVE-2018-18074.patch: fix in requests/sessions.py. - CVE-2018-18074 -- <email address hidden> (Leonidas S. Barbosa) Wed, 10 Oct 2018 13:24:54 -0300

Source diff to previous version

CVE-2018-18074

The Requests package through 2.19.1 before 2018-09-14 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname htt

Version: 2.2.1-1ubuntu0.3	2015-06-24 17:06:24 UTC
`requests (2.2.1-1ubuntu0.3) trusty-proposed; urgency=medium * SRU, update python3.4 for trusty. LP: #1433324. * Build a -whl package (setuptools is needed to build the wheel package). -- Matthias Klose <email address hidden> Tue, 17 Mar 2015 23:40:09 +0100`
Source diff to previous version

Version: 2.2.1-1ubuntu0.2 2015-03-16 15:07:36 UTC

requests (2.2.1-1ubuntu0.2) trusty-security; urgency=medium * SECURITY UPDATE: Session fixation and cookie stealing issue (LP: #1432555). - debian/patches/CVE-2015-2296.patch: extract cookies from the original request (which still has the host which returned the cookies) - CVE-2015-2296 -- Daniel Watkins <email address hidden> Mon, 16 Mar 2015 10:11:03 +0000

Source diff to previous version

1432555	Please fix handling of cookies on redirect
CVE-2015-2296	session fixation and cookie stealing

Version: 2.2.1-1ubuntu0.1 2014-10-14 16:07:09 UTC

Version: 2.2.1-1ubuntu0.1	2014-10-14 16:07:09 UTC
requests (2.2.1-1ubuntu0.1) trusty-security; urgency=medium * SECURITY UPDATE: Authorization header disclosure on redirect - debian/patches/CVE-2014-1829.patch: if redirected, strip authentication header in requests/sessions.py, add should_bypass_proxies() to requests/utils.py. - CVE-2014-1829 * SECURITY UPDATE: Proxy-Authorization header disclosure on redirect - debian/patches/CVE-2014-1830.patch: also strip proxy headers in requests/sessions.py, added test to test_requests.py. - CVE-2014-1830 -- Marc Deslauriers <email address hidden> Tue, 30 Sep 2014 16:13:52 -0400

requests (2.2.1-1ubuntu0.1) trusty-security; urgency=medium * SECURITY UPDATE: Authorization header disclosure on redirect - debian/patches/CVE-2014-1829.patch: if redirected, strip authentication header in requests/sessions.py, add should_bypass_proxies() to requests/utils.py. - CVE-2014-1829 * SECURITY UPDATE: Proxy-Authorization header disclosure on redirect - debian/patches/CVE-2014-1830.patch: also strip proxy headers in requests/sessions.py, added test to test_requests.py. - CVE-2014-1830 -- Marc Deslauriers <email address hidden> Tue, 30 Sep 2014 16:13:52 -0400

About - Send Feedback to @ubuntu_updates

Package "requests"

Links

Other versions of "requests" in Trusty

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

updates

proposed

security

PPA updates