VYPR

rpm package

opensuse/python-requests&distro=openSUSE Leap 15.1

pkg:rpm/opensuse/python-requests&distro=openSUSE%20Leap%2015.1

Vulnerabilities (1)

  • CVE-2018-18074HigOct 9, 2018
    affected < 2.20.1-lp151.2.3.1fixed 2.20.1-lp151.2.3.1

    The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect, which makes it easier for remote attackers to discover credentials by sniffing the network.