{"affected":[{"ecosystem_specific":{"binaries":[{"python2-requests":"2.18.4-150000.3.3.1","python3-requests":"2.18.4-150000.3.3.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15-ESPOS","name":"python-requests","purl":"pkg:rpm/suse/python-requests&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.18.4-150000.3.3.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-requests":"2.18.4-150000.3.3.1","python3-requests":"2.18.4-150000.3.3.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15-LTSS","name":"python-requests","purl":"pkg:rpm/suse/python-requests&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.18.4-150000.3.3.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-requests":"2.18.4-150000.3.3.1","python3-requests":"2.18.4-150000.3.3.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15-LTSS","name":"python-requests","purl":"pkg:rpm/suse/python-requests&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.18.4-150000.3.3.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-requests":"2.18.4-150000.3.3.1","python3-requests":"2.18.4-150000.3.3.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15","name":"python-requests","purl":"pkg:rpm/suse/python-requests&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.18.4-150000.3.3.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for python-requests fixes the following issues:\n\n- CVE-2018-18074: Fixed sending an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect (bsc#1111622) \n","id":"SUSE-SU-2022:1448-1","modified":"2022-04-28T08:18:24Z","published":"2022-04-28T08:18:24Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20221448-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1111622"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-18074"}],"related":["CVE-2018-18074"],"summary":"Security update for python-requests","upstream":["CVE-2018-18074"]}