Debian Bug report logs -
#1036693
requests: CVE-2023-32681: Unintended leak of Proxy-Authorization header
Package:
src:requests;
Maintainer for src:requests is Debian Python Team <team+python@trackerdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Wed, 24 May 2023 12:39:06 UTC
Severity: impor ...
A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin This is a product of how rebuild_proxies is used to recompute and reattach the Proxy-Authorization header to requests when redirected This behavior only ...
A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin This is a product of how rebuild_proxies is used to recompute and reattach the Proxy-Authorization header to requests when redirected This behavior only ...
Description<!---->A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin This is a product of how rebuild_proxies is used to recompute and reattach the Proxy-Authorization header to requests when redirected ...
Synopsis
Moderate: python27:27 security and bug fix update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for the python27:27 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has ...
概要
Moderate: python39:39 and python39-devel:39 security update
タイプ/重大度
Security Advisory: Moderate
Red Hat Insights パッチ分析
このアドバイザリーの影響を受けるシステムを特定し、修正します。
影響を受けるシステムの表示
トピック
An update for the python39:39 and py ...
Synopsis
Moderate: python38:38 and python38-devel:38 security update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for the python38:38 and python38-devel:38 modules is now available for Red Hat Enterprise L ...
Synopsis
Critical: Multicluster Engine for Kubernetes 227 security updates and bug fixes
Type/Severity
Security Advisory: Critical
Topic
Multicluster Engine for Kubernetes 227 General Availability release images, which provide security updates and fix bugsRed Hat Product Security has rated this update as having a security impactof Critic ...
Synopsis
Moderate: python-requests security update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for python-requests is now available for Red Hat Enterprise Linux 86 Extended Update SupportRed Hat Product Sec ...
Synopsis
Important: Migration Toolkit for Containers (MTC) 180 security and bug fix update
Type/Severity
Security Advisory: Important
Topic
The Migration Toolkit for Containers (MTC) 180 is now availableRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) ba ...
Synopsis
Important: OpenShift Virtualization 4133 Images security and bug fix update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Virtualization release 4133 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a secur ...
Synopsis
Moderate: Migration Toolkit for Containers (MTC) 1713 security and bug fix update
Type/Severity
Security Advisory: Moderate
Topic
The Migration Toolkit for Containers (MTC) 1713 is now availableRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) bas ...
Synopsis
Important: Self Node Remediation Operator 051 security update
Type/Severity
Security Advisory: Important
Topic
This is an updated version of the Self Node Remediation Operator This Operator is delivered by Red Hat Workload AvailabilityRed Hat Product Security has rated this update as having a security impact of Important A Commo ...
Synopsis
Important: Node Health Check Operator 041
Type/Severity
Security Advisory: Important
Topic
This is an updated version of the Node Health Check Operator This Operator is delivered by Red Hat Workload AvailabilityRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring ...
Synopsis
Critical: Red Hat Advanced Cluster Management 267 security and bug fix updates
Type/Severity
Security Advisory: Critical
Topic
Red Hat Advanced Cluster Management for Kubernetes 267 GeneralAvailability release images, which provide security updates and fix bugsRed Hat Product Security has rated this update as having a security i ...
Synopsis
Moderate: OpenShift Virtualization 4126 Images
Type/Severity
Security Advisory: Moderate
Topic
Red Hat OpenShift Virtualization release 4126 is now available with updates to packages and images that fix several bugs and add enhancements
Description
OpenShift Virtualization is Red Hat's virtualization solution designed for Red ...
Synopsis
Critical: Red Hat OpenShift GitOps security update
Type/Severity
Security Advisory: Critical
Topic
An update is now available for Red Hat OpenShift GitOps 19Red Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity ...
Synopsis
Moderate: OpenShift Container Platform 4138 bug fix and security update
Type/Severity
Security Advisory: Moderate
Topic
Red Hat OpenShift Container Platform release 4138 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Con ...
Synopsis
Moderate: python-requests security update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for python-requests is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this updat ...
Synopsis
Critical: Red Hat Advanced Cluster Management 277 security and bug fix updates
Type/Severity
Security Advisory: Critical
Topic
Red Hat Advanced Cluster Management for Kubernetes 277 GeneralAvailability release images, which provide security updates and fix bugsRed Hat Product Security has rated this update as having a security i ...
Synopsis
Moderate: AMQ Broker 7111OPR2GA Container Images Release
Type/Severity
Security Advisory: Moderate
Topic
This is the multiarch release of the AMQ Broker 7111 aligned Operator and associated container images on Red Hat Enterprise Linux 8 for the OpenShift Container PlatformRed Hat Product Security has rated this update as havi ...
Synopsis
Important: Red Hat OpenShift Pipelines Operator security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for OpenShift-Pipelines-111-RHEL-8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a ...
Synopsis
Important: Self Node Remediation Operator 071 security update
Type/Severity
Security Advisory: Important
Topic
This is an updated version of the Self Node Remediation Operator This Operator is delivered by Red Hat Workload AvailabilityRed Hat Product Security has rated this update as having a security impact of Important A Commo ...
Synopsis
Important: Red Hat Single Sign-On 765 for OpenShift image enhancement and security update
Type/Severity
Security Advisory: Important
Topic
A new image is available for Red Hat Single Sign-On 765, running on OpenShift Container Platform 310 and 311, and 43Red Hat Product Security has rated this update as having a security impa ...
Synopsis
Moderate: Red Hat Ansible Automation Platform 24 Product Security and Bug Fix Update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update is now available for Red Hat Ansible Automation Platform 24Red Hat P ...
Synopsis
Important: Red Hat OpenShift Pipelines 1106 release and security update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Pipelines 1106 has been releasedRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a ...