Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DLA-2861-1:1B126
HistoryDec 28, 2021 - 1:20 p.m.

[SECURITY] [DLA 2861-1] rdflib security update

2021-12-2813:20:41
lists.debian.org
14
rdflib
security update
debian 9

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.5

Confidence

High

EPSS

0.005

Percentile

77.0%

JSON

Debian LTS Advisory DLA-2861-1 [email protected]
https://www.debian.org/lts/security/ Adrian Bunk
December 28, 2021 https://wiki.debian.org/LTS

Package : rdflib
Version : 4.2.1-2+deb9u1
CVE ID : CVE-2019-7653
Debian Bug : 921751

The python-rdflib-tools package (tools for converting to and from RDF)
had wrappers that could load Python modules from the current working
directory, allowing code injection.

For Debian 9 stretch, this problem has been fixed in version
4.2.1-2+deb9u1.

We recommend that you upgrade your rdflib packages.

For the detailed security status of rdflib please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/rdflib

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Related

osv 4
nvd 1
prion 1
nessus 3
debiancve 1
openvas 3
debian 1
cve 1
ubuntucve 1
cvelist 1
ubuntu 1
osv
osv
rdflib - security update
2021-12-28 00:00:00
rdflib - security update
2019-03-18 00:00:00
rdflib vulnerability
2020-09-23 16:48:40
nvd
nvd
CVE-2019-7653
2019-02-09 03:29:00
prion
prion
Code injection
2019-02-09 03:29:00
nessus
nessus
Debian DLA-2861-1 : rdflib - LTS security update
2021-12-28 00:00:00
Debian DLA-1717-1 : rdflib security update
2019-03-19 00:00:00
Ubuntu 16.04 LTS : RDFLib vulnerability (USN-4535-1)
2020-09-23 00:00:00
debiancve
debiancve
CVE-2019-7653
2019-02-09 03:29:00
openvas
openvas
Debian: Security Advisory (DLA-2861-1)
2021-12-29 00:00:00
Ubuntu: Security Advisory (USN-4535-1)
2020-09-24 00:00:00
Debian: Security Advisory (DLA-1717-1)
2019-03-18 00:00:00
debian
debian
[SECURITY] [DLA 1717-1] rdflib security update
2019-03-18 07:15:50
cve
cve
CVE-2019-7653
2019-02-09 03:29:00
ubuntucve
ubuntucve
CVE-2019-7653
2019-02-09 00:00:00
cvelist
cvelist
CVE-2019-7653
2019-02-09 03:00:00
ubuntu
ubuntu
RDFLib vulnerability
2020-09-23 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.5

Confidence

High

EPSS

0.005

Percentile

77.0%

JSON
Related for DEBIAN:DLA-2861-1:1B126
osv4nvd1prion1nessus3debiancve1openvas3debian1cve1ubuntucve1cvelist1ubuntu1