1. Gunicorn v22 Security Update Patches Critical HTTP Request Smuggling Vulnerability (CVE-2024-1135)
A critical security flaw in the widely-used Gunicorn WSGI server has been patched, exposing countless Python web applications to HTTP Request Smuggling attacks. The vulnerability, tracked as CVE-2024-1135, stems from Gunicorn's failure to properly validate Transfer-Encoding headers. This allows attackers to craft malic...