[ubuntu/mantic-proposed] requests 2.28.1+dfsg-1ubuntu2 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Mon Jun 5 17:20:13 UTC 2023
requests (2.28.1+dfsg-1ubuntu2) mantic; urgency=medium
* SECURITY UPDATE: Unintended leak of Proxy-Authorization header
- debian/patches/CVE-2023-32681.patch: don't attach header to redirects
with an HTTPS destination in requests/sessions.py,
tests/test_requests.py.
- CVE-2023-32681
Date: Mon, 05 Jun 2023 12:54:33 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/requests/2.28.1+dfsg-1ubuntu2
-------------- next part --------------
Format: 1.8
Date: Mon, 05 Jun 2023 12:54:33 -0400
Source: requests
Built-For-Profiles: noudeb
Architecture: source
Version: 2.28.1+dfsg-1ubuntu2
Distribution: mantic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
requests (2.28.1+dfsg-1ubuntu2) mantic; urgency=medium
.
* SECURITY UPDATE: Unintended leak of Proxy-Authorization header
- debian/patches/CVE-2023-32681.patch: don't attach header to redirects
with an HTTPS destination in requests/sessions.py,
tests/test_requests.py.
- CVE-2023-32681
Checksums-Sha1:
725aaa853482d49c693fc99bf292589f6b5bdb84 2614 requests_2.28.1+dfsg-1ubuntu2.dsc
b4828c72039919a8f24ccf0b525d5e7a90dd8513 14408 requests_2.28.1+dfsg-1ubuntu2.debian.tar.xz
85d729c148d0c7840f87eb171f65703e76edfc8c 8339 requests_2.28.1+dfsg-1ubuntu2_source.buildinfo
Checksums-Sha256:
3082fb2d7227128f8e899665b9dbd79231c982c486f111b25b81a648f9519e77 2614 requests_2.28.1+dfsg-1ubuntu2.dsc
793ad36fc394805a216bc5638ad8d918d026ad8003d454278033a78a389973b0 14408 requests_2.28.1+dfsg-1ubuntu2.debian.tar.xz
9e4891f43a3f27a727a299faefdbc3a15ebd07bd40de5f67c5d3d32085dbe602 8339 requests_2.28.1+dfsg-1ubuntu2_source.buildinfo
Files:
c455204a2d848036554080c8186e4957 2614 python optional requests_2.28.1+dfsg-1ubuntu2.dsc
5348031982d91aba9272cd3acc0b6393 14408 python optional requests_2.28.1+dfsg-1ubuntu2.debian.tar.xz
aecc8bb01eb6e03c2fd0797fbeb3634c 8339 python optional requests_2.28.1+dfsg-1ubuntu2_source.buildinfo
Original-Maintainer: Debian Python Team <team+python at tracker.debian.org>
More information about the mantic-changes
mailing list