Oval Definition:	oval:com.redhat.rhsa:def:20201561
Revision Date: 2020-04-23 Version: 635 Title: RHSA-2020:1561: python-twisted-web security update (Important) Description: Twisted is an event-based framework for internet applications. Twisted Web is a complete web server, aimed at hosting web applications using Twisted and Python, but fully able to serve static pages too. Security Fix(es): python-twisted: HTTP request smuggling when presented with two Content-Length headers (CVE-2020-10108) python-twisted: HTTP request smuggling when presented with a Content-Length and a chunked Transfer-Encoding header (CVE-2020-10109) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Family: unix Class: patch Status: Reference(s): CVE-2020-10108 CVE-2020-10109 RHSA-2020:1561 Platform(s): Red Hat Enterprise Linux 7 Product(s): Definition Synopsis Red Hat Enterprise Linux must be installed OR Package Information Red Hat Enterprise Linux 7 is installed AND python-twisted-web is earlier than 0:12.1.0-7.el7_8 AND python-twisted-web is signed with Red Hat redhatrelease2 key
BACK