| Revision Date: | 2020-11-10 | Version: | 1 |
| Title: | Security update for python-waitress (Moderate) |
| Description: |
This update for python-waitress to 1.4.3 fixes the following security issues:
- CVE-2019-16785: HTTP request smuggling through LF vs CRLF handling (bsc#1161088). - CVE-2019-16786: HTTP request smuggling through invalid Transfer-Encoding (bsc#1161089). - CVE-2019-16789: HTTP request smuggling through invalid whitespace characters (bsc#1160790). - CVE-2019-16792: HTTP request smuggling by sending the Content-Length header twice (bsc#1161670).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1160790
1161088
1161089
1161670
CVE-2019-16785
CVE-2019-16786
CVE-2019-16789
CVE-2019-16792
|
| Platform(s): | SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
| Product(s): | |