USN-3790-2: Requests vulnerability
22 October 2018
Requests could be made to expose sensitive information if it received a specially crafted HTTP header.
- requests - elegant and simple HTTP library for Python
USN-3790-1 fixed vulnerabilities in Requests. This update provides
the corresponding update for Ubuntu 18.10
Original advisory details:
It was discovered that Requests incorrectly handled certain HTTP headers.
An attacker could possibly use this issue to access sensitive information.
- USN-3790-1: requests, python-requests-whl, python-requests, python3-requests