Publishing details

Published on 2020-10-05
Copied from ubuntu bionic in PPA for Ubuntu Security Proposed by Marc Deslauriers

Changelog

python-urllib3 (1.22-1ubuntu0.18.04.2) bionic-security; urgency=medium

  * SECURITY UPDATE: CRLF injection via method parameter
    - debian/patches/CVE-2020-26137.patch: raise ValueError if method
      contains control characters in urllib3/connection.py,
      test/with_dummyserver/test_connectionpool.py.
    - CVE-2020-26137

 -- Marc Deslauriers <email address hidden>  Thu, 01 Oct 2020 14:00:15 -0400

Available diffs

diff from 1.22-1ubuntu0.18.04.1 to 1.22-1ubuntu0.18.04.2 (1.8 KiB)

Builds

amd64

Built packages

python-urllib3 HTTP library with thread-safe connection pooling for Python

python3-urllib3 HTTP library with thread-safe connection pooling for Python3

Package files

python-urllib3_1.22-1ubuntu0.18.04.2.debian.tar.xz (34.9 KiB)
python-urllib3_1.22-1ubuntu0.18.04.2.dsc (2.8 KiB)
python-urllib3_1.22-1ubuntu0.18.04.2_all.deb (84.0 KiB)
python-urllib3_1.22.orig.tar.gz (220.8 KiB)
python-urllib3_1.22.orig.tar.gz.asc (801 bytes)
python3-urllib3_1.22-1ubuntu0.18.04.2_all.deb (84.1 KiB)