Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 554
Alerts This Week
Warning Icon 1 554

Scientific Linux SL7: Important Security Update for Python-Twisted-Web

Scientific Large Esm H446
python-twisted: HTTP request smuggling when presented with two Content-Length headers (CVE-2020-10108) * python-twisted: HTTP request smuggling when presented with a Content-Length and a chunked Transfer-Encoding header (CVE-2020-10109) SL7 x86_64 python-twisted-web-12.1.0-7.el7_8.x86_64.rpm - Scientific Linux Development Team
Synopsis:          Important: python-twisted-web security update
Advisory ID:       SLSA-2020:1561-1
Issue Date:        2020-04-23
CVE Numbers:       None
--

Security Fix(es):

* python-twisted: HTTP request smuggling when presented with two
Content-Length headers (CVE-2020-10108)

* python-twisted: HTTP request smuggling when presented with a
Content-Length and a chunked Transfer-Encoding header (CVE-2020-10109)
--

SL7
  x86_64
    python-twisted-web-12.1.0-7.el7_8.x86_64.rpm

- Scientific Linux Development Team