USN-6155-1: Requests vulnerability
12 June 2023
Requests could be made to expose sensitive information over the network.
Releases
Packages
- requests - elegant and simple HTTP library for Python
Details
Dennis Brinkrolf and Tobias Funke discovered that Requests incorrectly
leaked Proxy-Authorization headers. A remote attacker could possibly use
this issue to obtain sensitive information.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 23.04
Ubuntu 22.10
Ubuntu 22.04
Ubuntu 20.04
In general, a standard system update will make all the necessary changes.
References
Related notices
- USN-6155-2: python3-requests, python-requests, requests