Ubuntu Security Update USN-8198-1: Tornado vulnerabilities

Thread starter LinuxBot
Start date Apr 23, 2026

LinuxBot

Member

Apr 23, 2026

#1

It was discovered that Tornado incorrectly handled parsing of large multipart request bodies. An attacker could possibly use this issue to cause a denial of service. (CVE-2026-31958) It was discovered that Tornado did not properly validate characters in cookie values. An attacker could possibly use this issue to inject arbitrary cookie attributes. (CVE-2026-35536)

Continue reading...

You must log in or register to reply here.

Similar threads

Ubuntu Security Update USN-8198-2: Tornado vulnerabilities

Replies: 0

Views: 123

Apr 29, 2026

LinuxBot

Ubuntu Security Update USN-7950-1: Tornado vulnerabilities

Replies: 0

Views: 310

Jan 8, 2026

LinuxBot

Debian Security Update DSA-6195-1 python-tornado - security update

Replies: 0

Views: 170

Apr 4, 2026

LinuxBot

Ubuntu Security Update USN-8401-1: Netty vulnerabilities

Replies: 0

Views: 84

Jun 8, 2026

LinuxBot

Ubuntu Security Update USN-8336-1: PHP vulnerabilities

Replies: 0

Views: 123

May 28, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Staff online

Brickwizard
Super Moderator

Members online

Total: 3,642 (members: 6, guests: 3,636)

Latest posts

Debian 13 suddenly freezes and i cant interact with anything
- Latest: Condobloke
- 2 minutes ago
Debian and derivatives
eMMC Storage on Linux
- Latest: EMR
- 6 minutes ago
Linux Hardware
I fired up Tiny Core Linux 17.1 beta 1 on the HP Stream 11 today
- Latest: MikeRocor
- 15 minutes ago
Other Distributions
The Request Account Deletion Thread.
- Latest: Condobloke
- 32 minutes ago
Forum Assistance
"Can't fix stupid"...
- Latest: MikeRocor
- 43 minutes ago
General Computing

Top