Information on source package python-urllib3

Available versions

ReleaseVersion
jessie1.9.1-3
jessie (security)1.9.1-3+deb8u1
stretch1.19.1-1
buster1.24.1-1
bullseye1.24.1-1
sid1.24.1-1

Open issues

BugjessiestretchbusterbullseyesidDescription
CVE-2019-11324fixedvulnerablevulnerablevulnerablevulnerableThe urllib3 library before 1.24.2 for Python mishandles certain cases ...
CVE-2019-11236fixedvulnerablevulnerablevulnerablevulnerableIn the urllib3 library through 1.24.1 for Python, CRLF injection is po ...
CVE-2018-20060vulnerable (no DSA, ignored)vulnerable (no DSA)fixedfixedfixedurllib3 before version 1.23 does not remove the Authorization HTTP hea ...

Resolved issues

BugDescription
CVE-2016-9015Versions 1.17 and 1.18 of the Python urllib3 library suffer from a vul ...
CVE-2013-2099Algorithmic complexity vulnerability in the ssl.match_hostname functio ...

Security announcements

DSA / DLADescription
DLA-1828-1python-urllib3 - security update

Search for package or bug name: Reporting problems