It was discovered that the urllib3 Python HTTP library didn't sanitise some cross-origin redirects, which could result in information disclosure.
https://security-tracker.debian.org/tracker/DSA-6363-1
Continue reading...
https://security-tracker.debian.org/tracker/DSA-6363-1
Continue reading...

