In Jupyter Notebook before 5.7.8, an open redirect can occur via an empty netloc. This issue exists because of an incomplete fix for CVE-2019-10255. Reference: https://blog.jupyter.org/open-redirect-vulnerability-in-jupyter-jupyterhub-adf43583f1e4 Upstream commit: https://github.com/jupyter/notebook/compare/16cf97c...b8e30ea
Created python-notebook tracking bugs for this issue: Affects: fedora-all [bug 1696648]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.