USN-6155-2: Requests vulnerability
15 June 2023
Requests could be made to expose sensitive information over the network.
- requests - elegant and simple HTTP library for Python
USN-6155-1 fixed a vulnerability in Requests. This update provides
the corresponding update for Ubuntu 16.04 ESM and 18.04 ESM.
Original advisory details:
Dennis Brinkrolf and Tobias Funke discovered that Requests incorrectly
leaked Proxy-Authorization headers. A remote attacker could possibly use
this issue to obtain sensitive information.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.
- USN-6155-1: python3-requests, requests, python-requests-doc