Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
203
security advisorymoderateupdateMageia 8 MGASA-2023-0196 Moderate: httpie Cookie Exposure Threat
Cookie exposure to third parties (CVE-2022-24737) References: - https://bugs.mageia.org/show_bug.cgi?id=30188 - https://lists.fedoraproject.org/archives/list/
Jun 15, 2023
•Important
Mageia
197
security advisorysecurity updatedebianDebian 8: DLA-1937-1 Critical: Httpie Open Redirect Issue
An open redirect, that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or hers control, . Package : httpie Version : 0.8.0-1+deb8u1 CVE ID : CVE-2019-10751 Debian Bug : 940058 An open redirect, that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or hers control, was found and reported in CVE-2019-10751. This was patched upstream and so when `--download` without `--output` results in a redirect, now only the initial URL is considered, not the final one. For Debian 8 "Jessie", this problem has been fixed in version 0.8.0-1+deb8u1. We recommend that you upgrade your httpie packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . A vulnerability in httpie permits unauthorized file access, resolved in Debian LTS 0.8.0-1+deb8u2. Upgrade advised.. httpie update, debian lts, security advisory, open redirect, file writing. . Severity: Critical. LinuxSecurity.com Team
Sep 28, 2019
•Critical
Debian LTS
202
security advisorymoderatesecurity updateopenSUSE: 2019:2089-1 Moderate: httpie Open Redirect Fix
An update that fixes one vulnerability is now available.. openSUSE Security Update: Security update for httpie ______________________________________________________________________________ Announcement ID: openSUSE-SU-2019:2089-1 Rating: moderate References: #1148466 Cross-References: CVE-2019-10751 Affected Products: openSUSE Backports SLE-15-SP1 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for httpie fixes the following issues: httpie was updated to version 1.0.3: * Fix CVE-2019-10751 (HTTPie is vulnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or hers control. (bsc#1148466) This update was imported from the openSUSE:Leap:15.1:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP1: zypper in -t patch openSUSE-2019-2089=1 Package List: - openSUSE Backports SLE-15-SP1 (noarch): python3-httpie-1.0.3-bp151.2.6.1 References: https://www.suse.com/security/cve/CVE-2019-10751.html https://bugzilla.suse.com/1148466 -- . A pivotal update for wget in Fedora addresses a Path Traversal vulnerability, bolstering overall system integrity. Take action now!. openSUSE Security, httpie update, Cybersecurity Patch, Open Redirect Risk, Security Advisory. . Severity: Important. LinuxSecurity.com Team
Sep 07, 2019
•Important
OpenSUSE
202
security advisorymoderatethreatopenSUSE: 2019:2050-1 Moderate: httpie Open Redirect Issue
An update that fixes one vulnerability is now available.. openSUSE Security Update: Security update for httpie ______________________________________________________________________________ Announcement ID: openSUSE-SU-2019:2050-1 Rating: moderate References: #1148466 Cross-References: CVE-2019-10751 Affected Products: openSUSE Leap 15.1 openSUSE Backports SLE-15-SP1 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for httpie fixes the following issues: httpie was updated to version 1.0.3: * Fix CVE-2019-10751 (HTTPie is volnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or hers control. (bsc#1148466) Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2019-2050=1 - openSUSE Backports SLE-15-SP1: zypper in -t patch openSUSE-2019-2050=1 Package List: - openSUSE Leap 15.1 (noarch): python3-httpie-1.0.3-lp151.2.3.1 - openSUSE Backports SLE-15-SP1 (noarch): python3-httpie-1.0.3-bp151.2.3.1 References: https://www.suse.com/security/cve/CVE-2019-10751.html https://bugzilla.suse.com/1148466 -- . Routine security patch for httpie on openSUSE correcting a critical Open Redirect vulnerability. Suggested procedures for updating are provided.. OpenSUSE, HTTPie, Security Update, Patch Instructions, Open Redirect. . LinuxSecurity.com Team
Sep 02, 2019
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!