Safety vulnerability ID: 61865
The information on this page was manually curated by our Cybersecurity Intelligence Team.
Httptools 0.5.0 updates the bundled 'llhttp' library to v6.0.9 to include security fixes.
Latest version: 0.6.4
A collection of framework independent HTTP protocol utils.
UPDATE: The bundled copy of llhttp in this release is vulnerable to CVE-2023-30589, please update to use 0.6.0 instead.
Changes
=======
* Bump bundled llhttp to 6.0.9
fixes CVE-2022-32213, CVE-2022-32214, CVE-2022-32215
(by nlsj1985 in 56d6a163 for 83)
* Test and build against Python 3.11
(by elprans in 509cd149 for 84)
Scan your Python project for dependency vulnerabilities in two minutes
Scan your application