python-requests-2.20.0-5.el8_10
エラータID: AXSA:2025-9519:01
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* requests: subsequent requests to the same host ignore cert verification (CVE-2024-35195)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2024-35195
Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests `Session`, if the first request is made with `verify=False` to disable cert verification, all subsequent requests to the same host will continue to ignore cert verification regardless of changes to the value of `verify`. This behavior will continue for the lifecycle of the connection in the connection pool. This vulnerability is fixed in 2.32.0.
Update packages.
Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests `Session`, if the first request is made with `verify=False` to disable cert verification, all subsequent requests to the same host will continue to ignore cert verification regardless of changes to the value of `verify`. This behavior will continue for the lifecycle of the connection in the connection pool. This vulnerability is fixed in 2.32.0.
N/A
SRPMS
- python-requests-2.20.0-5.el8_10.src.rpm
MD5: c891db461377de21c08dca0a98a3ce17
SHA-256: 247dc6913974e661e66f680d83998dd51cb7ba859e4043e653546d28c40b595e
Size: 2.95 MB
Asianux Server 8 for x86_64
- python3-requests-2.20.0-5.el8_10.noarch.rpm
MD5: 54ed15209e133880c4ad2c1490c98de7
SHA-256: eac70aadaafcbaa335958512921faf1dc8ab178eaf1619b98c6944ae5da7bfae
Size: 125.27 kB
日本語