UbuntuUpdates.org

Package "gunicorn"

Name: gunicorn

Description:

Event-based HTTP/WSGI server

Latest version: 19.4.5-1ubuntu1.1
Release: xenial (16.04)
Level: updates
Repository: universe
Homepage: http://gunicorn.org/

Links


Download "gunicorn"


Other versions of "gunicorn" in Xenial

Repository Area Version
base universe 19.4.5-1ubuntu1
security universe 19.4.5-1ubuntu1.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 19.4.5-1ubuntu1.1 2019-06-19 19:06:23 UTC

  gunicorn (19.4.5-1ubuntu1.1) xenial-security; urgency=medium

  * SECURITY UPDATE: Fix HTTP header splitting vulnerability
    - debian/patches/CVE-2018-1000164.patch: adds header checking and error handling
    - CVE-2018-1000164

 -- Mark Morlino <email address hidden> Fri, 14 Jun 2019 13:51:47 -0400

CVE-2018-1000164 gunicorn version 19.4.5 contains a CWE-113: Improper Neutralization of CRLF Sequences in HTTP Headers vulnerability in "process_headers" function in



About   -   Send Feedback to @ubuntu_updates