Security update for python-requests
This update for python-requests to version 2.20.1 fixes the following issues:
Security issue fixed:
- CVE-2018-18074: Fixed an information disclosure vulnerability of the HTTP Authorization header (bsc#1111622).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
-
Submitted by
Bryan Stephenson (bryanstephenson)
Fixed bugs
bnc#1111622
VUL-0: CVE-2018-18074: python-requests: The Requests package sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect
