View | Details | Raw Unified | Return to bug 261791 | Differences between
and this patch

Collapse All | Expand All

(-)b/security/vuxml/vuln-2022.xml (+28 lines)
Lines 1-3 Link Here
1 
  <vuln vid="24049967-88ec-11ec-88f5-901b0e934d69">
2 
    <topic>py-twisted -- cookie and authorization headers are leaked when following cross-origin redirects</topic>
3 
    <affects>
4 
      <package>
5 
	<name>py37-twisted</name>
6 
	<name>py38-twisted</name>
7 
	<name>py39-twisted</name>
8 
	<name>py310-twisted</name>
9 
	<range><lt>22.1.0</lt></range>
10 
      </package>
11 
    </affects>
12 
    <description>
13 
      <body xmlns="http://www.w3.org/1999/xhtml">
14 
	<p>Twisted developers report:</p>
15 
	<blockquote cite="https://github.com/twisted/twisted/security/advisories/GHSA-92x2-jw7w-xvvx">
16 
	  <p> Cookie and Authorization headers are leaked when following cross-origin redirects in <code>twited.web.client.RedirectAgent</code> and <code>twisted.web.client.BrowserLikeRedirectAgent</code>.</p>
17 
	</blockquote>
18 
      </body>
19 
    </description>
20 
    <references>
21 
      <url>https://github.com/twisted/twisted/security/advisories/GHSA-92x2-jw7w-xvvx</url>
22 
    </references>
23 
    <dates>
24 
      <discovery>2022-02-07</discovery>
25 
      <entry>2022-02-08</entry>
26 
    </dates>
27 
  </vuln>
28 

            

        

          1
          
  <vuln vid="fc2a9541-8893-11ec-9d01-80ee73419af3">

          29
          
  <vuln vid="fc2a9541-8893-11ec-9d01-80ee73419af3">

        

        

          2
          
    <topic>xrdp -- privilege escalation</topic>

          30
          
    <topic>xrdp -- privilege escalation</topic>

        

        

          3
          
    <affects>

          31
          
    <affects>

        






  

  Return to bug 261791