Download
| Alert*
|
oval:org.secpod.oval:def:126292
urllib3 is a powerful, user-friendly HTTP client for Python. urllib3 brings many critical features that are missing from the Python standard libraries: Thread safety. Connection pooling. Client-side SSL/TLS verification. File uploads with multipart encoding. Helpers for retrying requests and dealing ... oval:org.secpod.oval:def:96445 python-pip: Python package installer Details: USN-6473-1 fixed vulnerabilities in urllib3. This update provides the corresponding updates for the urllib3 module bundled into pip. Original advisory Several security issues were fixed in pip. oval:org.secpod.oval:def:96922 The host is missing a patch containing a security fixes, which affects the following package(s): Python oval:org.secpod.oval:def:2600468 The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. oval:org.secpod.oval:def:708577 python-urllib3: HTTP library with thread-safe connection pooling Several security issues were fixed in urllib3. oval:org.secpod.oval:def:96434 python-urllib3: HTTP library with thread-safe connection pooling Several security issues were fixed in urllib3. oval:org.secpod.oval:def:2501308 The python-urllib3 package provides the Python HTTP module with connection pooling and file POST abilities. oval:org.secpod.oval:def:1507241 [1.24.2-5.0.1.2] - set RECENT_DATE to 01/30/2019 to make checks happy [Orabug: 30228991] [1.24.2-5.2] - Security fix for CVE-2023-45803 Resolves: rhbz#2246840 - Security fix for CVE-2023-43804 Resolves: rhbz#2242493 oval:org.secpod.oval:def:708590 python-pip: Python package installer Details: USN-6473-1 fixed vulnerabilities in urllib3. This update provides the corresponding updates for the urllib3 module bundled into pip. Original advisory Several security issues were fixed in pip. oval:org.secpod.oval:def:19500532 urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the 'Cookie' HTTP header special or provide any helpers for managing cookies over HTTP, that is the responsibility of the user. However, it is possible for a user to specify a 'Cookie' header and unknowingly leak inform ... oval:org.secpod.oval:def:126309 urllib3 is a powerful, user-friendly HTTP client for Python. urllib3 brings many critical features that are missing from the Python standard libraries: Thread safety. Connection pooling. Client-side SSL/TLS verification. File uploads with multipart encoding. Helpers for retrying requests and dealing ... oval:org.secpod.oval:def:1507224 [4.10.0-55.2] - python-certifi: Removal of e-Tugra root certificate - python-urllib3: Cookie request header isn"t stripped during cross-origin redirects oval:org.secpod.oval:def:2501311 The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. oval:org.secpod.oval:def:1507248 [4.2.1-121.2] - bundled urllib3: fix CVE-2023-43804 Resolves: RHEL-11988 - bundled certifi: fix CVE-2023-37920 Resolves: RHEL-6972 oval:org.secpod.oval:def:89050952 This update for python-urllib3 fixes the following issues: * CVE-2023-43804: Fixed a potential cookie leak via HTTP redirect if the user manually set the corresponding header . oval:org.secpod.oval:def:89050979 This update for python-urllib3 fixes the following issues: * CVE-2023-43804: Fixed a potential cookie leak via HTTP redirect if the user manually set the corresponding header . oval:org.secpod.oval:def:1507286 [1.26.5-3.0.1.1] - Security fix for CVE-2023-45803 Resolves: RHEL-16874 - Security fix for CVE-2023-43804 Resolves: RHEL-12001 oval:org.secpod.oval:def:2600487 The python-urllib3 package provides the Python HTTP module with connection pooling and file POST abilities. oval:org.secpod.oval:def:2108378 Oracle Solaris 11 - ( CVE-2023-43804 ) oval:org.secpod.oval:def:509097 The python-urllib3 package provides the Python HTTP module with connection pooling and file POST abilities. Security Fix: python-urllib3: Cookie request header isn"t stripped during cross-origin redirects urllib3: Request body not stripped after redirect from 303 status changes request method to GE ... oval:org.secpod.oval:def:509114 The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. Security Fix: python-certifi: Removal of e-Tugra root certificate python-urllib3: Cookie ... oval:org.secpod.oval:def:509078 The python-urllib3 package provides the Python HTTP module with connection pooling and file POST abilities. Security Fix: python-urllib3: Cookie request header isn"t stripped during cross-origin redirects urllib3: Request body not stripped after redirect from 303 status changes request method to GE ... oval:org.secpod.oval:def:2600557 The python-urllib3 package provides the Python HTTP module with connection pooling and file POST abilities. oval:org.secpod.oval:def:509352 The python-urllib3 package provides the Python HTTP module with connection pooling and file POST abilities. Security Fix: python-urllib3: Cookie request header isn"t stripped during cross-origin redirects For more details about the security issue, including the impact, a CVSS score, acknowledgments ... oval:org.secpod.oval:def:2501439 The python-urllib3 package provides the Python HTTP module with connection pooling and file POST abilities. oval:org.secpod.oval:def:509343 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix: pypa- ... oval:org.secpod.oval:def:509387 Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. The python27 packages provide a stable release of Python 2.7 with a number of additional utilities and database connectors for My ... oval:org.secpod.oval:def:2501449 Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. The python27 packages provide a stable release of Python 2.7 with a number of additional utilities and database connectors for My ... oval:org.secpod.oval:def:2501437 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. |
