search

pferron / Case112184

0 stars 2 forks source link

Update dependency urllib3 to v1.26.19 #34

Open mend-for-github-com[bot] opened 2 months ago

mend-for-github-com[bot] commented 2 months ago

This PR contains the following updates:

Package Update Change
urllib3 (changelog) patch ==1.26.15 -> ==1.26.19

By merging this PR, the issue #8 will be automatically resolved and closed:

Severity CVSS Score CVE
Medium Medium 5.9 CVE-2023-43804
Medium Medium 4.4 CVE-2024-37891
Medium Medium 4.2 CVE-2023-45803

Release Notes

urllib3/urllib3 (urllib3) ### [`v1.26.19`](https://redirect.github.com/urllib3/urllib3/blob/HEAD/CHANGES.rst#12619-2024-06-17) [Compare Source](https://redirect.github.com/urllib3/urllib3/compare/1.26.18...1.26.19) \==================== - Added the `Proxy-Authorization` header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via `Retry.remove_headers_on_redirect`. - Fixed handling of OpenSSL 3.2.0 new error message for misconfiguring an HTTP proxy as HTTPS. (`#​3405 `\__) ### [`v1.26.18`](https://redirect.github.com/urllib3/urllib3/blob/HEAD/CHANGES.rst#12618-2023-10-17) [Compare Source](https://redirect.github.com/urllib3/urllib3/compare/1.26.17...1.26.18) \==================== - Made body stripped from HTTP requests changing the request method to GET after HTTP 303 "See Other" redirect responses. ### [`v1.26.17`](https://redirect.github.com/urllib3/urllib3/blob/HEAD/CHANGES.rst#12617-2023-10-02) [Compare Source](https://redirect.github.com/urllib3/urllib3/compare/1.26.16...1.26.17) \==================== - Added the `Cookie` header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via `Retry.remove_headers_on_redirect`. (`#​3139 `\_) ### [`v1.26.16`](https://redirect.github.com/urllib3/urllib3/blob/HEAD/CHANGES.rst#12616-2023-05-23) [Compare Source](https://redirect.github.com/urllib3/urllib3/compare/1.26.15...1.26.16) \==================== - Fixed thread-safety issue where accessing a `PoolManager` with many distinct origins would cause connection pools to be closed while requests are in progress (`#​2954 `\_)