|
|
Log in / Subscribe / Register

requests: cookie stealing attacks

Package(s):requests CVE #(s):CVE-2015-2296
Created:March 16, 2015 Updated:June 18, 2015
Description: From the Ubuntu advisory:

Matthew Daley discovered that Requests incorrectly handled cookies without host values when being redirected. A remote attacker could possibly use this issue to perform session fixation or cookie stealing attacks.

Alerts:
Fedora FEDORA-2015-9664 python-requests 2015-06-18
Mageia MGASA-2015-0180 python-pip 2015-05-03
Fedora FEDORA-2015-4084 python-urllib3 2015-03-29
Fedora FEDORA-2015-4084 python-requests 2015-03-29
Mageia MGASA-2015-0120 python-requests 2015-03-27
Mandriva MDVSA-2015:133 python-requests 2015-03-29
Ubuntu USN-2531-1 requests 2015-03-16
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds