CVE-2020-10108

Debian Bug report logs - #953950 twisted: CVE-2020-10108 CVE-2020-10109 Package: src:twisted; Maintainer for src:twisted is Debian Python Modules Team <python-modules-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Mar 2020 21:57:07 UTC Severity: important Tags: secu ...

Synopsis Important: python-twisted-web security update Type/Severity Security Advisory: Important Topic An update for python-twisted-web is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring Sys ...

Synopsis Important: python-twisted-web security update Type/Severity Security Advisory: Important Topic An update for python-twisted-web is now available for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring Sys ...

Several security issues were fixed in Twisted ...

Several security issues were fixed in Twisted ...

In Twisted Web through 19100, there was an HTTP request splitting vulnerability When presented with a content-length and a chunked encoding header, the content-length took precedence and the remainder of the request body was interpreted as a pipelined request (CVE-2020-10109) In Twisted Web through 19100, there was an HTTP request splitting v ...

In Twisted Web through 19100, there was an HTTP request splitting vulnerability When presented with two content-length headers, it ignored the first header When the second content-length value was set to zero, the request body was interpreted as a pipelined request(CVE-2020-10108) ...