Lucene search
GoogleOSV:GHSA-VCR5-XR9H-MVC5HistoryNov 06, 2018 - 11:12 p.m.
python-gnupg vulnerable to shell injection
2018-11-0623:12:48
Google
osv.dev
10
python-gnupg 0.3.5 and 0.3.6 allow for shell injection via a failure to escape backslashes in the shell_quote() function. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7323.
| CPE | Name | Operator | Version |
|---|---|---|---|
| python-gnupg | eq | 0.3.6 | |
| python-gnupg | eq | 0.3.5 |
References
seclists.org/oss-sec/2014/q1/245
seclists.org/oss-sec/2014/q1/335
www.debian.org/security/2014/dsa-2946
alioth-lists.debian.net/pipermail/debian-security-tracker-commits/2014-June/028512.html
code.google.com/archive/p/python-gnupg/issues/98
github.com/advisories/GHSA-vcr5-xr9h-mvc5
github.com/vsajip/python-gnupg
nvd.nist.gov/vuln/detail/CVE-2014-1929
web.archive.org/web/20200228170437/www.securityfocus.com/bid/65539
www.openwall.com/lists/oss-security/2014/02/04/3
www.openwall.com/lists/oss-security/2014/02/04/4
Related
debiancve
debiancve
prion
prion
Design/Logic Flaw
2014-10-25 21:55:00
Code injection
2014-06-09 19:55:00
Design/Logic Flaw
2014-10-25 21:55:00
cvelist
cvelist
cve
cve
osv
osv
PYSEC-2014-92
2014-10-25 21:55:00
python-gnupg - security update
2014-06-04 00:00:00
PYSEC-2014-89
2014-06-09 19:55:00
nvd
nvd
ubuntucve
ubuntucve
github
github
python-gnupg vulnerable to shell injection
2018-11-06 23:12:48
High severity vulnerability that affects python-gnupg
2018-11-06 23:14:22
High severity vulnerability that affects python-gnupg
2018-11-06 23:14:39
nessus
nessus
Fedora 20 : python-gnupg-0.3.6-1.fc20 (2014-2103)
2014-02-23 00:00:00
Debian DSA-2946-1 : python-gnupg - security update
2014-06-05 00:00:00
Fedora 19 : python-gnupg-0.3.6-1.fc19 (2014-2140)
2014-02-23 00:00:00
debian
debian
[SECURITY] [DSA 2946-1] python-gnupg security update
2014-06-04 16:55:29
openvas
openvas
Fedora Update for python-gnupg FEDORA-2014-2103
2014-02-25 00:00:00
Debian: Security Advisory (DSA-2946-1)
2014-06-03 00:00:00
Debian Security Advisory DSA 2946-1 (python-gnupg - security update)
2014-06-04 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2946-1] python-gnupg security update
2014-06-14 00:00:00
python-PGP code execution
2014-06-14 00:00:00
seebug
seebug
Python-gnupgθΏη¨ε½δ»€ζ§θ‘ζΌζ΄(CVE-2014-1929)
2014-02-17 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: python-gnupg-0.3.6-1.fc20
2014-02-22 00:35:25
[SECURITY] Fedora 19 Update: python-gnupg-0.3.6-1.fc19
2014-02-22 00:37:14