-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2020-a7a15a9687 2020-06-16 01:25:41.305004 --------------------------------------------------------------------------------
Name : python-httplib2 Product : Fedora 32 Version : 0.18.1 Release : 3.fc32 URL : https://pypi.python.org/pypi/httplib2 Summary : Comprehensive HTTP client library Description : A comprehensive HTTP client library that supports many features left out of other HTTP libraries.
-------------------------------------------------------------------------------- Update Information:
Fix for CVE-2020-11078 -------------------------------------------------------------------------------- ChangeLog:
* Thu Jun 11 2020 Gwyn Ciesla gwync@protonmail.com - 0.18.1-3 - BR fixes. * Fri May 22 2020 Miro Hron��ok mhroncok@redhat.com - 0.18.1-2 - Rebuilt for Python 3.9 * Wed May 20 2020 Gwyn Ciesla gwync@protonmail.com - 0.18.1-1 - 0.18.1 * Wed May 20 2020 Gwyn Ciesla gwync@protonmail.com - 0.18.0-1 - 0.18.0 * Wed May 20 2020 Gwyn Ciesla gwync@protonmail.com - 0.17.4-1 - 0.17.4 * Mon May 4 2020 Miro Hron��ok mhroncok@redhat.com - 0.17.3-3 - Fix python2/python3 mishmash (#1830222) - Run tests * Wed Apr 22 2020 Igor Raits ignatenkobrain@fedoraproject.org - 0.17.3-2 - Cleanup spec * Wed Apr 22 2020 Gwyn Ciesla gwync@protonmail.com - 0.17.3-1 - 0.17.3 * Mon Apr 13 2020 Gwyn Ciesla gwync@protonmail.com - 0.17.2-1 - 0.17.2 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1845940 - CVE-2020-11078 python-httplib2: CRLF injection via an attacker controlling unescaped part of uri for httplib2.Http.request function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1845940 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-a7a15a9687' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------