Ubuntu Security Notice 4022-1 - It was discovered that gunicorn improperly handled certain input. An attacker could potentially use this issue execute a cross-site scripting attack.
ee98b227f2df8ccd05edca88b0bb8f93741475919fc6cd7d650f8cd0043d7ae6
Debian Linux Security Advisory 4186-1 - It was discovered that gunicorn, an event-based HTTP/WSGI server was susceptible to HTTP Response splitting.
a1b247830a9eeaf020ed67529b835738e82d75b38c2d3592d56e2ebd4954a365