Ubuntu Update For Requests USN-2382-1 Network Vulnerability

Summary

Check the version of requests

Solution

Please Install the Updated Packages.

Insight

Jakub Wilk discovered that Requests incorrectly reused authentication credentials after being redirected. An attacker could possibly use this issue to obtain authentication credentials intended for another site. (CVE-2014-1829, CVE-2014-1830)

Affected

requests on Ubuntu 14.04 LTS

Detection

Get the installed version with the help of detect NVT and check if the version is vulnerable or not.

Severity

Classification

CVE CVE-2014-1829, CVE-2014-1830

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Ubuntu Update for dbus USN-1576-1
Ubuntu Update for cinder USN-2005-1
Ubuntu Update for curl USN-2167-1
Ubuntu Update for apache2 USN-1368-1
Ubuntu Update for bzip2 vulnerability USN-986-1

Ubuntu Update for requests USN-2382-1

Take action and discover your vulnerabilities