[ALSA-2024:5309] Moderate: python-urllib3 security update
Type:
security
Severity:
moderate
Release date:
2024-08-21
Description:
The python-urllib3 package provides the Python HTTP module with connection pooling and file POST abilities. Security Fix(es): * urllib3: proxy-authorization request header is not stripped during cross-origin redirects (CVE-2024-37891) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
noarch python3-urllib3-1.24.2-8.el8_10.noarch.rpm 08e8c2597e93c2d3397ac463fe8069db215cc0e47223ef2efa44cee9a8a3cd1b
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.