Security update for python-tornado
python-tornado was updates to fix one security issue.
The following vulnerability was fixed:
* CVE-2014-9720: XSRF cookie allowed side-channel attack against TLS (BREACH)
-
Submitted by
Cliff Zhao (qzhao)
Fixed bugs
bnc#930362
VUL-1: CVE-2014-9720: python-tornado: XSRF cookie allows side-channel attack against TLS (BREACH)
bnc#930361
VUL-1: python-tornado: secure cookie name may be the prefix of another