Jakub Wilk discovered that Requests incorrectly reused authentication credentials after being redirected. An attacker could possibly use this issue to obtain authentication credentials intended for another site. (CVE-2014-1829, CVE-2014-1830)
{ "availability": "No subscription required", "binaries": [ { "python-requests": "2.2.1-1ubuntu0.1", "python3-requests": "2.2.1-1ubuntu0.1" } ] }