Ubuntu Security Update USN-6473-1: urllib3 vulnerabilities

Thread starter LinuxBot
Start date Nov 7, 2023

LinuxBot

Member

Nov 7, 2023

#1

It was discovered that urllib3 didn't strip HTTP Authorization header on cross-origin redirects. A remote attacker could possibly use this issue to obtain sensitive information. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. (CVE-2018-25091) It was discovered that urllib3 didn't strip HTTP Cookie header on cross-origin redirects. A remote attacker could possibly use this issue to obtain sensitive information. (CVE-2023-43804) It was discovered that urllib3 didn't strip HTTP body on status code 303 redirects under certain circumstances. A remote attacker could possibly use this issue to obtain sensitive information. (CVE-2023-45803)

Continue reading...

You must log in or register to reply here.

Similar threads

Ubuntu Security Update USN-7762-1: pip vulnerabilities

Replies: 0

Views: 308

Sep 23, 2025

LinuxBot

Ubuntu Security Update USN-7955-1: urllib3 vulnerability

Replies: 0

Views: 229

Jan 12, 2026

LinuxBot

Ubuntu Security Update USN-7955-2: urllib3 regression

Replies: 0

Views: 192

Jan 19, 2026

LinuxBot

Ubuntu Security Update USN-8227-1: curl vulnerabilities

Replies: 0

Views: 125

May 4, 2026

LinuxBot

Ubuntu Security Update USN-8217-1: follow-redirects vulnerabilities

Replies: 0

Views: 155

Apr 29, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

Total: 2,626 (members: 4, guests: 2,622)

Latest posts

Videogame Sountrack
- Latest: Fymgee
- 17 minutes ago
Linux Gaming
trixie... xfce
- Latest: Fymgee
- 22 minutes ago
General Linux Topics
Guidance with bash shell scripting?
- Latest: beanburrito
- 37 minutes ago
Command Line
O
Linux on Macbook 12" early 2016
- Latest: onzem
- 38 minutes ago
General Linux Topics
L
Is this scripting language understandable?
- Latest: lily64mark
- Today at 6:16 AM
Dev-ops

Top