UbuntuUpdates.org

Package "gunicorn3"

Name: gunicorn3

Description:

Event-based HTTP/WSGI server

Latest version: 19.4.5-1ubuntu1.1
Release: xenial (16.04)
Level: security
Repository: universe
Head package: gunicorn
Homepage: http://gunicorn.org/

Links


Download "gunicorn3"


Other versions of "gunicorn3" in Xenial

Repository Area Version
base universe 19.4.5-1ubuntu1
updates universe 19.4.5-1ubuntu1.1

Changelog

Version: 19.4.5-1ubuntu1.1 2019-06-19 19:06:22 UTC

  gunicorn (19.4.5-1ubuntu1.1) xenial-security; urgency=medium

  * SECURITY UPDATE: Fix HTTP header splitting vulnerability
    - debian/patches/CVE-2018-1000164.patch: adds header checking and error handling
    - CVE-2018-1000164

 -- Mark Morlino <email address hidden> Fri, 14 Jun 2019 13:51:47 -0400

CVE-2018-1000164 gunicorn version 19.4.5 contains a CWE-113: Improper Neutralization of CRLF Sequences in HTTP Headers vulnerability in "process_headers" function in



About   -   Send Feedback to @ubuntu_updates