SUSE Package Hub - openSUSE-2022-10098

Update Info

openSUSE-2022-10098

Security update for python-treq

Type: security

Severity: moderate

Issued: 2022-08-24

Description:

This update for python-treq fixes the following issues:

- Fixed CVE-2022-23607 (boo#1195432) binding cookies to the domain.

References

CVE: CVE-2022-23607
Bugzilla: 1195432 VUL-1: CVE-2022-23607: python-treq: treq's request methods and `treq.client.HTTPClient` constructor do not bind cookies to a domain

Packages

python-treq-20.3.0-bp153.2.3.1