VYPR

rpm package

opensuse/python-urllib3&distro=openSUSE Leap 15.2

pkg:rpm/opensuse/python-urllib3&distro=openSUSE%20Leap%2015.2

Vulnerabilities (1)

  • CVE-2020-26137Sep 29, 2020
    affected < 1.24-lp152.5.3.1fixed 1.24-lp152.5.3.1

    urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116.