Ubuntu Update For Requests USN-2382-1 Network Vulnerability

Summary

Check the version of requests

Solution

Please Install the Updated Packages.

Insight

Jakub Wilk discovered that Requests incorrectly reused authentication credentials after being redirected. An attacker could possibly use this issue to obtain authentication credentials intended for another site. (CVE-2014-1829, CVE-2014-1830)

Affected

requests on Ubuntu 14.04 LTS

Detection

Get the installed version with the help of detect NVT and check if the version is vulnerable or not.

Severity

Classification

CVE CVE-2014-1829, CVE-2014-1830
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Ubuntu Update for dbus USN-1576-2
Ubuntu Update for bogofilter vulnerability USN-980-1
Ubuntu Update for apt USN-1169-1
Ubuntu Update for bind9 vulnerability USN-622-1
Ubuntu Update for aptdaemon vulnerability USN-1068-1

Ubuntu Update for requests USN-2382-1

Take action and discover your vulnerabilities