Skip to content

Fix potentially vulnerable cloned function#15

Open
npt-1707 wants to merge 1 commit into
hengxuZ:masterfrom
npt-1707:fix_CVE-2021-28363
Open

Fix potentially vulnerable cloned function#15
npt-1707 wants to merge 1 commit into
hengxuZ:masterfrom
npt-1707:fix_CVE-2021-28363

Conversation

@npt-1707

Copy link
Copy Markdown

Hi again,

Our tool identified a potential vulnerability in a clone function in venv/lib/python3.8/site-packages/urllib3/connection.py sourced from urllib3/urllib3. This issue, originally reported in CVE-2021-28363, was resolved in the repository via this commit urllib3/urllib3@8d65ea1.

This PR suggests applying the corresponding patch to fix the vulnerabilities in this codebase.

Please review at your convenience. Thank you!

…me verification for HTTPS proxies with default cert.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant