requests

  • Add upstream patch for CVE-2018-18074
  • Update to 2.14.2

urllib3

  • update to 1.25.1

  • Fixed an issue with JSON encoding detection, specifically detecting big-endian UTF-32 with BOM.
  • Fixed regression from 2.12.2 where non-string types were rejected in the basic auth parameters. While support for this behaviour has been readded, the behaviour is deprecated and will be removed in the future.

This update has been submitted for testing by orion.

a year ago

This update's test gating status has been changed to 'waiting'.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago

orion edited this update.

New build(s):

  • python3-urllib3-1.25.1-1.el6_10

Karma has been reset.

a year ago

This update has been submitted for testing by orion.

a year ago

orion edited this update.

New build(s):

  • python3-requests-2.14.2-2.el6_10

Karma has been reset.

a year ago

This update has obsoleted python3-requests-2.12.5-1.el6, and has inherited its bugs and notes.

a year ago

This update has been pushed to testing.

a year ago

This update can be pushed to stable now if the maintainer wishes

a year ago

This update has been submitted for stable by bodhi.

a year ago

FEDORA-EPEL-2019-3c9eacae67 ejected from the push because "Cannot find relevant tag for python3-requests-2.14.2-2.el6_10. None of ['dist-6E-epel'] are in ['dist-6E-epel-testing', 'epel7-testing', 'dist-5E-epel-testing', 'f27-modular-updates-testing', 'f30-modular-updates-testing', 'f30-container-updates-testing', 'f30-flatpak-updates-testing', 'f28-modular-updates-testing', 'f28-container-updates-testing', 'epel8-testing', 'f31-modular-updates-testing', 'f32-container-updates-testing', 'f31-container-updates-testing', 'f31-flatpak-updates-testing', 'f29-modular-updates-testing', 'f29-container-updates-testing', 'f29-flatpak-updates-testing', 'f22-updates-testing', 'f21-updates-testing', 'f25-updates-testing', 'f24-updates-testing', 'f23-updates-testing', 'f26-updates-testing', 'f27-updates-testing', 'f30-updates-testing', 'f28-updates-testing', 'f31-updates-testing', 'f32-updates-testing', 'f29-updates-testing', 'epel8-modular-updates-testing']."

a year ago

This update has been pushed to stable.

a year ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
2
Stable by Time
14 days
Dates
submitted
a year ago
in testing
a year ago
in stable
a year ago
modified
a year ago
BZ#1643829 CVE-2018-18074 python-requests: Redirect from HTTPS to HTTP does not remove Authorization header
0
0
BZ#1778143 CVE-2018-18074 python3-requests: python-requests: Redirect from HTTPS to HTTP does not remove Authorization header [epel-6]
0
0

Automated Test Results