python/python-urllib3
SHA256
15
0
Fork 0
forked from pool/python-urllib3
Code Pull Requests Activity
194 Commits 3 Branches 0 Tags
036b503cc370ffd24f27407ff00541575f749d52770e215f9ef3b0d2d0fdebf8
Commit Graph

2 Commits

Author SHA256 Message Date
John Paul Adrian Glaubitz
036b503cc3 Backport fix to address CVE-2026-21441 
- Add CVE-2026-21441.patch to fix excessive resource consumption
  during decompression of data in HTTP redirect responses
  (bsc#1256331, CVE-2026-21441)
 2026-01-13 11:08:08 +01:00
Steve Kowalik
75573f8736 - Update to 2.5.0: 
* Security issues
    Pool managers now properly control redirects when retries is passed
    (CVE-2025-50181, GHSA-pq67-6m6q-mj2v, bsc#1244925)
    Redirects are now controlled by urllib3 in the Node.js runtime
    (CVE-2025-50182, GHSA-48p4-8xcf-vxj5, bsc#1244924)
  * Features
    Added support for the compression.zstd module that is new in Python 3.14.
    Added support for version 0.5 of hatch-vcs
  * Bugfixes
    Raised exception for HTTPResponse.shutdown on a connection already
    released to the pool.
    Fixed incorrect CONNECT statement when using an IPv6 proxy with
    connection_from_host. Previously would not be wrapped in [].

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-urllib3?expand=0&rev=190
 2025-06-23 02:04:11 +00:00