{"id":"CVE-2016-9964","details":"redirect() in bottle.py in bottle 0.12.10 doesn't filter a \"\\r\\n\" sequence, which leads to a CRLF attack, as demonstrated by a redirect(\"233\\r\\nSet-Cookie: name=salt\") call.","aliases":["GHSA-j6f7-hghw-g437","PYSEC-2016-24"],"modified":"2026-05-17T11:55:21.897578626Z","published":"2016-12-16T09:59:00.373Z","related":["openSUSE-SU-2024:11220-1"],"database_specific":{"unresolved_ranges":[{"source":"CPE_FIELD","vendor_product":"debian:debian_linux","extracted_events":[{"last_affected":"8.0"}],"cpes":["cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*"]}]},"references":[{"type":"ADVISORY","url":"http://www.debian.org/security/2016/dsa-3743"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/94961"},{"type":"FIX","url":"https://github.com/bottlepy/bottle/commit/6d7e13da0f998820800ecb3fe9ccee4189aefb54"},{"type":"FIX","url":"https://github.com/bottlepy/bottle/issues/913"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"}]}