Test ID:	1.3.6.1.4.1.25623.1.0.885042
Category:	Fedora Local Security Checks
Title:	Fedora: Security Advisory for python-urllib3 (FEDORA-2023-932b0c86f4)
Summary:	The remote host is missing an update for the 'python-urllib3'; package(s) announced via the FEDORA-2023-932b0c86f4 advisory.
Description:	Summary: The remote host is missing an update for the 'python-urllib3' package(s) announced via the FEDORA-2023-932b0c86f4 advisory. Vulnerability Insight: urllib3 is a powerful, user-friendly HTTP client for Python. urllib3 brings many critical features that are missing from the Python standard libraries: Thread safety. Connection pooling. Client-side SSL/TLS verification. File uploads with multipart encoding. Helpers for retrying requests and dealing with HTTP redirects. Support for gzip, deflate, brotli, and zstd encoding. Proxy support for HTTP and SOCKS. 100% test coverage. Affected Software/OS: 'python-urllib3' package(s) on Fedora 38. Solution: Please install the updated package(s). CVSS Score: 4.0 CVSS Vector: AV:A/AC:H/Au:M/C:C/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-45803 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5F5CUBAN5XMEBVBZPHFITBLMJV5FIJJ5/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PPDPLM6UUMN55ESPQWJFLLIZY4ZKCNRX/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4R2Y5XK3WALSR3FNAGN7JBYV2B343ZKB/ https://github.com/urllib3/urllib3/commit/4e98d57809dacab1cbe625fddeec1a290c478ea9 https://github.com/urllib3/urllib3/security/advisories/GHSA-g4mx-q9vg-27p4 https://www.rfc-editor.org/rfc/rfc9110.html#name-get
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.