VYPR

rpm package

opensuse/python-gunicorn&distro=openSUSE Leap 15.5

pkg:rpm/opensuse/python-gunicorn&distro=openSUSE%20Leap%2015.5

Vulnerabilities (1)

  • CVE-2024-1135HigApr 16, 2024
    affected < 20.1.0-150400.12.6.1fixed 20.1.0-150400.12.6.1

    Gunicorn fails to properly validate Transfer-Encoding headers, leading to HTTP Request Smuggling (HRS) vulnerabilities. By crafting requests with conflicting Transfer-Encoding headers, attackers can bypass security restrictions and access restricted endpoints. This issue is due t