Security News

Cybersecurity news aggregator

🐧
MEDIUM Vulnerabilities Ubuntu Security

USN-8198-2: Tornado vulnerabilities

cve-2026-31958cve-2026-35536ubuntu
  • What: Security vulnerabilities in Tornado
  • Impact: Potential denial of service and cookie injection attacks
Read Full Article →

USN-8198-1 fixed vulnerabilities in Tornado. This update provides the corresponding updates for Ubuntu 26.04 LTS. Original advisory details: It was discovered that Tornado incorrectly handled parsing of large multipart request bodies. An attacker could possibly use this issue to cause a denial of service. (CVE-2026-31958) It was discovered that Tornado did not properly validate characters in cookie values. An attacker could possibly use this issue to inject arbitrary cookie attributes. (CVE-2026-35536)

Related Articles

MEDIUM USN-8198-1: Tornado vulnerabilities Ubuntu Security HIGH RHSA-2026:11413: Important: yggdrasil security update Red Hat Errata INFO RHSA-2026:13641: Moderate: python-tornado security update Red Hat Errata INFO RHSA-2026:13670: Moderate: python-tornado security update Red Hat Errata
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn