VYPR

rpm package

opensuse/python-httplib2&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/python-httplib2&distro=openSUSE%20Tumbleweed

Vulnerabilities (2)

  • CVE-2021-21240HigFeb 8, 2021
    affected < 0.19.1-1.2fixed 0.19.1-1.2

    httplib2 is a comprehensive HTTP client library for Python. In httplib2 before version 0.19.0, a malicious server which responds with long series of "\xa0" characters in the "www-authenticate" header may cause Denial of Service (CPU burn while parsing header) of the httplib2 clie

  • CVE-2020-11078MedMay 20, 2020
    affected < 0.19.1-1.2fixed 0.19.1-1.2

    In httplib2 before version 0.18.0, an attacker controlling unescaped part of uri for `httplib2.Http.request()` could change request headers and body, send additional hidden requests to same server. This vulnerability impacts software that uses httplib2 with uri constructed by str