Back to bug 2139431
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Avinash Hanwate | 2022-11-03 06:17:38 UTC | Doc Text | A host header injection flaw was found in the twisted event-based framework's web module. When the host header does not match a configured host | A host header injection flaw was found in the twisted event-based framework's web module. When the host header does not match a configured host |
| Doc Text | , the web module will render unescaped characters into the 404 response. This can result in HTML and script injection. For this vulnerability to be exploited, the attacker already needs to be in a privileged position. | , the web module will render unescaped characters into the 404 response. This can result in HTML and script injection. For this vulnerability to be exploited, the attacker needs to be in a privileged position. | ||
| Blocks | 2138869 | |||
| CC | bbuckingham, bcourt, btotty, eglynn, ehelms, jjoyce, jschluet, jsherril, lhh, lmadsen, lzap, mburns, mgarciac | |||
| CC | , mhulan, mmccune, mrunge, myarboro, nmoumoul, orabin, pcreech, python-maint, rchan, rhos-maint, slinaber | |||
| CC | , spower, tvignaud | |||
| Depends On | 2139629, 2139627, 2139630, 2139628 | |||
| Vipul Nair | 2022-11-17 11:42:52 UTC | Depends On | 2143620, 2143621 | |
| Dhananjay Arunesh | 2022-11-28 10:20:32 UTC | CC | adudiak, kshier, stcannon, tfister | |
| Red Hat Bugzilla | 2023-01-01 05:32:50 UTC | CC | amctagga | |
| Red Hat Bugzilla | 2023-01-01 05:47:17 UTC | CC | flucifre | |
| Red Hat Bugzilla | 2023-01-01 05:52:50 UTC | CC | mhackett | |
| Red Hat Bugzilla | 2023-01-01 06:02:10 UTC | CC | bniver | |
| Red Hat Bugzilla | 2023-01-01 08:34:23 UTC | CC | mbenjamin | |
| Red Hat Bugzilla | 2023-01-01 08:43:25 UTC | CC | sostapov | |
| Red Hat Bugzilla | 2023-01-01 08:47:50 UTC | CC | vereddy | |
| Alasdair Kergon | 2023-01-04 05:43:50 UTC | CC | sostapov | |
| Alasdair Kergon | 2023-01-04 06:11:25 UTC | CC | bniver | |
| Alasdair Kergon | 2023-01-04 06:19:28 UTC | CC | mbenjamin | |
| Alasdair Kergon | 2023-01-04 06:29:04 UTC | CC | vereddy | |
| Alasdair Kergon | 2023-01-04 06:43:51 UTC | CC | flucifre | |
| Alasdair Kergon | 2023-01-04 11:29:24 UTC | CC | mhackett | |
| Red Hat Bugzilla | 2023-01-20 05:18:50 UTC | CC | cwelton | |
| Red Hat Bugzilla | 2023-03-02 08:28:30 UTC | CC | myarboro | |
| Red Hat Bugzilla | 2023-05-15 20:19:06 UTC | CC | btotty | |
| Red Hat Bugzilla | 2023-07-07 08:34:43 UTC | Assignee | security-response-team | nobody |
Back to bug 2139431