all InfoSec news
USN-6473-2: pip vulnerabilities
Nov. 15, 2023, 11:27 a.m. |
Ubuntu security notices ubuntu.com
corresponding updates for the urllib3 module bundled into pip.
Original advisory details:
It was discovered that urllib3 didn't strip HTTP Authorization header
on cross-origin redirects. A remote attacker could possibly use this
issue to obtain sensitive information. This issue only affected
Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. (CVE-2018-25091)
It was discovered that urllib3 didn't strip HTTP Cookie header on
cross-origin redirects. A remote attacker could possibly use this
issue to …
advisory attacker authorization cross-origin header http information issue lts origin pip redirects sensitive sensitive information ubuntu update updates usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6804-1: GNU C Library vulnerabilities
1 day, 15 hours ago |
ubuntu.com
USN-6803-1: FFmpeg vulnerabilities
2 days, 12 hours ago |
ubuntu.com
USN-6802-1: PostgreSQL vulnerability
2 days, 16 hours ago |
ubuntu.com
USN-6801-1: PyMySQL vulnerability
2 days, 17 hours ago |
ubuntu.com
USN-6800-1: browserify-sign vulnerability
2 days, 18 hours ago |
ubuntu.com
USN-6798-1: GStreamer Base Plugins vulnerability
3 days, 13 hours ago |
ubuntu.com
USN-6796-1: TPM2 Software Stack vulnerabilities
3 days, 15 hours ago |
ubuntu.com
USN-6797-1: Intel Microcode vulnerabilities
3 days, 21 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC