FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

py-httpx -- input validation vulnerability

Affected packages
py310-httpx013 < 0.20.0
py311-httpx013 < 0.20.0
py37-httpx013 < 0.20.0
py38-httpx013 < 0.20.0
py39-httpx013 < 0.20.0

Details

VuXML ID e831dd5a-7d8e-4818-aa1f-17dd495584ec
Discovery 2022-04-28
Entry 2023-08-31

lebr0nli reports:

Encode OSS httpx <=1.0.0.beta0 is affected by improper input validation in `httpx.URL`, `httpx.Client` and some functions using `httpx.URL.copy_with`.

[source]

References

CVE Name CVE-2021-41945
URL https://osv.dev/vulnerability/GHSA-h8pj-cxx2-jfg2
URL https://osv.dev/vulnerability/PYSEC-2022-183

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.