| Release | Version |
|---|---|
| jessie | 2.4.3-6+deb8u1 |
| stretch | 2.12.4-1+deb9u1 |
| buster | 2.21.0-1+deb10u1 |
| bullseye | 2.25.1+dfsg-2 |
| bookworm | 2.28.1+dfsg-1 |
| trixie | 2.32.3+dfsg-1 |
| sid | 2.32.3+dfsg-1 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-35195 | vulnerable (no DSA, postponed) | vulnerable (no DSA, postponed) | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Requests is a HTTP library. Prior to 2.32.0, when making requests thro ... |
| CVE-2023-32681 | fixed | fixed | fixed | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Requests is a HTTP library. Since Requests 2.3.0, Requests has been le ... |
| CVE-2018-18074 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | The Requests package before 2.20.0 for Python sends an HTTP Authorizat ... |
| Bug | Description |
|---|---|
| CVE-2015-2296 | The resolve_redirects function in sessions.py in requests 2.1.0 throug ... |
| CVE-2014-1830 | Requests (aka python-requests) before 2.3.0 allows remote servers to o ... |
| CVE-2014-1829 | Requests (aka python-requests) before 2.3.0 allows remote servers to o ... |
| DSA / DLA | Description |
|---|---|
| DLA-3456-1 | requests - security update |
| ELA-870-1 | requests - security update |
| DSA-3146-1 | requests - security update |