Message 355246 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	rschiron
Recipients	benjamin.peterson, cstratak, gregory.p.smith, jaraco, larry, lukasz.langa, martin.panter, miss-islington, ned.deily, orange, rschiron, serhiy.storchaka, vstinner, ware, xiang.zhang, xtreak
Date	2019-10-23.18:34:37
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1571855677.7.0.590359260206.issue30458@roundup.psfhosted.org>
In-reply-to

Content
CVE-2019-18348 has been assigned to the issue explained in https://bugs.python.org/issue30458#msg347282 . Maybe a separate bug for it would be better though. CVE-2019-18348 is about injecting CRLF in HTTP requests through the host part of a URL.

CVE-2019-18348 has been assigned to the issue explained in https://bugs.python.org/issue30458#msg347282 . Maybe a separate bug for it would be better though. CVE-2019-18348 is about injecting CRLF in HTTP requests through the *host* part of a URL.

History
Date	User	Action	Args
2019-10-23 18:34:37	rschiron	set	recipients: + rschiron, gregory.p.smith, jaraco, vstinner, larry, benjamin.peterson, ned.deily, lukasz.langa, martin.panter, serhiy.storchaka, xiang.zhang, cstratak, orange, miss-islington, xtreak, ware
2019-10-23 18:34:37	rschiron	set	messageid: <1571855677.7.0.590359260206.issue30458@roundup.psfhosted.org>
2019-10-23 18:34:37	rschiron	link	issue30458 messages
2019-10-23 18:34:37	rschiron	create