VYPR

rpm package

suse/python-waitress&distro=SUSE Linux Enterprise Module for Package Hub 15 SP1

pkg:rpm/suse/python-waitress&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP1

Vulnerabilities (4)

  • CVE-2019-16792Jan 22, 2020
    affected < 1.4.3-3.3.1fixed 1.4.3-3.3.1

    Waitress through version 1.3.1 allows request smuggling by sending the Content-Length header twice. Waitress would header fold a double Content-Length header and due to being unable to cast the now comma separated value to an integer would set the Content-Length to 0 internally.

  • CVE-2019-16789Dec 26, 2019
    affected < 1.4.3-3.3.1fixed 1.4.3-3.3.1

    In Waitress through version 1.4.0, if a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and is parsed differently by waitress leading to a potential for HTTP request smuggling. Specially crafted requests contain

  • CVE-2019-16785Dec 20, 2019
    affected < 1.4.3-3.3.1fixed 1.4.3-3.3.1

    Waitress through version 1.3.1 implemented a "MAY" part of the RFC7230 which states: "Although the line terminator for the start-line and header fields is the sequence CRLF, a recipient MAY recognize a single LF as a line terminator and ignore any preceding CR." Unfortunately if

  • CVE-2019-16786Dec 20, 2019
    affected < 1.4.3-3.3.1fixed 1.4.3-3.3.1

    Waitress through version 1.3.1 would parse the Transfer-Encoding header and only look for a single string value, if that value was not chunked it would fall through and use the Content-Length header instead. According to the HTTP standard Transfer-Encoding should be a comma separ