SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-3116

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-3116

Security update for python-WebOb

Type: security

Severity: moderate

Issued: 2024-09-03

Description:

This update for python-WebOb fixes the following issues:

- CVE-2024-42353: Fixed open redirect via WebOb's Response object in Location header (bsc#1229221)

References

CVE: CVE-2024-42353
Bugzilla: 1229221 VUL-0: CVE-2024-42353: python-WebOb: WebOb provides objects for HTTP requests and responses. When WebOb normalizes the HTTP Location header to include the request hostname, it does so by parsing the URL that the user is to be redirected to with Pytho ...

Packages

python-WebOb-1.7.4-150000.3.3.1