|Category:||CentOS Local Security Checks|
|Title:||CentOS: Security Advisory for python-twisted-web (CESA-2020:1561)|
|Summary:||The remote host is missing an update for the 'python-twisted-web'; package(s) announced via the CESA-2020:1561 advisory.|
The remote host is missing an update for the 'python-twisted-web'
package(s) announced via the CESA-2020:1561 advisory.
Twisted is an event-based framework for internet applications. Twisted Web
is a complete web server, aimed at hosting web applications using Twisted
and Python, but fully able to serve static pages too.
* python-twisted: HTTP request smuggling when presented with two
Content-Length headers (CVE-2020-10108)
* python-twisted: HTTP request smuggling when presented with a
Content-Length and a chunked Transfer-Encoding header (CVE-2020-10109)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
'python-twisted-web' package(s) on CentOS 7.
Please install the updated package(s).
Common Vulnerability Exposure (CVE) ID: CVE-2020-10108|
Common Vulnerability Exposure (CVE) ID: CVE-2020-10109
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.