requests

  • Add upstream patch for CVE-2018-18074
  • Update to 2.14.2

urllib3

  • update to 1.25.1

  • Fixed an issue with JSON encoding detection, specifically detecting big-endian UTF-32 with BOM.
  • Fixed regression from 2.12.2 where non-string types were rejected in the basic auth parameters. While support for this behaviour has been readded, the behaviour is deprecated and will be removed in the future.

This update has been submitted for testing by orion.

7 months ago

This update's test gating status has been changed to 'waiting'.

7 months ago

This update's test gating status has been changed to 'ignored'.

7 months ago

This update has been pushed to testing.

7 months ago

orion edited this update.

New build(s):

  • python3-urllib3-1.25.1-1.el6_10

Karma has been reset.

7 months ago

This update has been submitted for testing by orion.

7 months ago

orion edited this update.

New build(s):

  • python3-requests-2.14.2-2.el6_10

Karma has been reset.

7 months ago

This update has obsoleted python3-requests-2.12.5-1.el6, and has inherited its bugs and notes.

7 months ago

This update has been pushed to testing.

7 months ago

This update can be pushed to stable now if the maintainer wishes

7 months ago

This update has been submitted for stable by bodhi.

7 months ago

FEDORA-EPEL-2019-3c9eacae67 ejected from the push because "Cannot find relevant tag for python3-requests-2.14.2-2.el6_10. None of ['dist-6E-epel'] are in ['dist-6E-epel-testing', 'epel7-testing', 'dist-5E-epel-testing', 'f27-modular-updates-testing', 'f30-modular-updates-testing', 'f30-container-updates-testing', 'f30-flatpak-updates-testing', 'f28-modular-updates-testing', 'f28-container-updates-testing', 'epel8-testing', 'f31-modular-updates-testing', 'f32-container-updates-testing', 'f31-container-updates-testing', 'f31-flatpak-updates-testing', 'f29-modular-updates-testing', 'f29-container-updates-testing', 'f29-flatpak-updates-testing', 'f22-updates-testing', 'f21-updates-testing', 'f25-updates-testing', 'f24-updates-testing', 'f23-updates-testing', 'f26-updates-testing', 'f27-updates-testing', 'f30-updates-testing', 'f28-updates-testing', 'f31-updates-testing', 'f32-updates-testing', 'f29-updates-testing', 'epel8-modular-updates-testing']."

7 months ago

This update has been pushed to stable.

6 months ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
2
Stable by Time
14 days
Dates
submitted
7 months ago
in testing
7 months ago
in stable
6 months ago
modified
7 months ago
BZ#1643829 CVE-2018-18074 python-requests: Redirect from HTTPS to HTTP does not remove Authorization header
0
0
BZ#1778143 CVE-2018-18074 python3-requests: python-requests: Redirect from HTTPS to HTTP does not remove Authorization header [epel-6]
0
0

Automated Test Results