Lucene search
GitHub Advisory DatabaseGHSA-VCR5-XR9H-MVC5HistoryNov 06, 2018 - 11:12 p.m.
python-gnupg vulnerable to shell injection
2018-11-0623:12:48
CWE-20
GitHub Advisory Database
github.com
10
0.003 Low
EPSS
Percentile
67.5%
python-gnupg 0.3.5 and 0.3.6 allow for shell injection via a failure to escape backslashes in the shell_quote() function. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7323.
| CPE | Name | Operator | Version |
|---|---|---|---|
| python-gnupg | le | 0.3.6 |
References
seclists.org/oss-sec/2014/q1/245
seclists.org/oss-sec/2014/q1/335
www.debian.org/security/2014/dsa-2946
alioth-lists.debian.net/pipermail/debian-security-tracker-commits/2014-June/028512.html
code.google.com/archive/p/python-gnupg/issues/98
github.com/advisories/GHSA-vcr5-xr9h-mvc5
nvd.nist.gov/vuln/detail/CVE-2014-1929
web.archive.org/web/20200228170437/www.securityfocus.com/bid/65539
www.openwall.com/lists/oss-security/2014/02/04/3
www.openwall.com/lists/oss-security/2014/02/04/4
Related
osv
osv
PYSEC-2014-92
2014-10-25 21:55:00
python-gnupg vulnerable to shell injection
2018-11-06 23:12:48
python-gnupg - security update
2014-06-04 00:00:00
cve
cve
ubuntucve
ubuntucve
prion
prion
Design/Logic Flaw
2014-10-25 21:55:00
Code injection
2014-06-09 19:55:00
Design/Logic Flaw
2014-10-25 21:55:00
cvelist
cvelist
debiancve
debiancve
nessus
nessus
Fedora 19 : python-gnupg-0.3.6-1.fc19 (2014-2140)
2014-02-23 00:00:00
Debian DSA-2946-1 : python-gnupg - security update
2014-06-05 00:00:00
Fedora 20 : python-gnupg-0.3.6-1.fc20 (2014-2103)
2014-02-23 00:00:00
openvas
openvas
Debian Security Advisory DSA 2946-1 (python-gnupg - security update)
2014-06-04 00:00:00
Fedora Update for python-gnupg FEDORA-2014-2140
2014-02-25 00:00:00
Fedora Update for python-gnupg FEDORA-2014-2140
2014-02-25 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2946-1] python-gnupg security update
2014-06-14 00:00:00
python-PGP code execution
2014-06-14 00:00:00
debian
debian
[SECURITY] [DSA 2946-1] python-gnupg security update
2014-06-04 16:54:47
github
github
High severity vulnerability that affects python-gnupg
2018-11-06 23:14:22
High severity vulnerability that affects python-gnupg
2018-11-06 23:14:39
Moderate severity vulnerability that affects python-gnupg
2018-11-06 23:13:02
seebug
seebug
Python-gnupgθΏη¨ε½δ»€ζ§θ‘ζΌζ΄(CVE-2014-1929)
2014-02-17 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: python-gnupg-0.3.6-1.fc20
2014-02-22 00:35:25
[SECURITY] Fedora 19 Update: python-gnupg-0.3.6-1.fc19
2014-02-22 00:37:14