all InfoSec news
USN-6473-2: pip vulnerabilities
Nov. 15, 2023, 11:27 a.m. |
Ubuntu security notices ubuntu.com
corresponding updates for the urllib3 module bundled into pip.
Original advisory details:
It was discovered that urllib3 didn't strip HTTP Authorization header
on cross-origin redirects. A remote attacker could possibly use this
issue to obtain sensitive information. This issue only affected
Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. (CVE-2018-25091)
It was discovered that urllib3 didn't strip HTTP Cookie header on
cross-origin redirects. A remote attacker could possibly use this
issue to …
advisory attacker authorization cross-origin header http information issue lts origin pip redirects sensitive sensitive information ubuntu update updates usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6747-2: Firefox regressions
16 hours ago |
ubuntu.com
USN-6760-1: Gerbv vulnerability
1 day, 21 hours ago |
ubuntu.com
LSN-0103-1: Kernel Live Patch Security Notice
2 days, 8 hours ago |
ubuntu.com
USN-6758-1: JSON5 vulnerability
2 days, 8 hours ago |
ubuntu.com
USN-6761-1: Anope vulnerability
2 days, 12 hours ago |
ubuntu.com
USN-6759-1: FreeRDP vulnerabilities
3 days, 2 hours ago |
ubuntu.com
USN-6757-1: PHP vulnerabilities
3 days, 5 hours ago |
ubuntu.com
USN-6744-3: Pillow vulnerability
3 days, 6 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
DevSecOps Engineer
@ LinQuest | Beavercreek, Ohio, United States
Senior Developer, Vulnerability Collections (Contractor)
@ SecurityScorecard | Remote (Turkey or Latin America)
Cyber Security Intern 03416 NWSOL
@ North Wind Group | RICHLAND, WA
Senior Cybersecurity Process Engineer
@ Peraton | Fort Meade, MD, United States
Sr. Manager, Cybersecurity and Info Security
@ AESC | Smyrna, TN 37167, Smyrna, TN, US | Santa Clara, CA 95054, Santa Clara, CA, US | Florence, SC 29501, Florence, SC, US | Bowling Green, KY 42101, Bowling Green, KY, US