Skip to content

HTTP proxy via "CONNECT" tunneling doesn't sanitize CR/LF #146211

New issue
New issue
Open
Open
HTTP proxy via "CONNECT" tunneling doesn't sanitize CR/LF#146211
Labels
3.10only security fixes3.11only security fixes3.12only security fixes3.13bugs and security fixes3.14bugs and security fixes3.15new features, bugs and security fixesstdlibStandard Library Python modules in the Lib/ directorytype-securityA security issue
@sethmlarson

Description

@sethmlarson
sethmlarson
opened on Mar 20, 2026

Bug report

Bug description:

HTTP proxy via "CONNECT" tunneling doesn't sanitize CR/LF. Should sanitize the input of .set_tunnel() to avoid header splitting.

CPython versions tested on:

CPython main branch

Operating systems tested on:

Other, Linux

Linked PRs

Metadata

Metadata

Assignees

No one assigned

    Labels

    3.10only security fixes3.11only security fixes3.12only security fixes3.13bugs and security fixes3.14bugs and security fixes3.15new features, bugs and security fixesstdlibStandard Library Python modules in the Lib/ directorytype-securityA security issue

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions