Lucene search
GoogleOSV:PYSEC-2019-104HistoryAug 18, 2019 - 8:15 p.m.
PYSEC-2019-104
2019-08-1820:15:00
Google
osv.dev
10
EPSS
0.002
Percentile
64.7%
DISPUTED core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with hypothetical other factors, i.e., an affected use case within a library caller, and a bug in the message receiver policy code that led to reliance on this extra protection mechanism.
Related
nvd
nvd
CVE-2019-15149
2019-08-18 20:15:09
cvelist
cvelist
CVE-2019-15149
2019-08-18 19:56:18
nessus
nessus
Fedora 29 : python-mitogen (2019-1f17485159)
2019-09-04 00:00:00
Fedora 30 : python-mitogen (2019-b25dd670a4)
2019-09-04 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: python-mitogen-0.2.8-1.fc29
2019-09-04 04:07:03
[SECURITY] Fedora 30 Update: python-mitogen-0.2.8-1.fc30
2019-09-04 03:13:04
openvas
openvas
Fedora Update for python-mitogen FEDORA-2019-b25dd670a4
2019-09-05 00:00:00
Fedora Update for python-mitogen FEDORA-2019-1f17485159
2019-09-05 00:00:00
prion
prion
Design/Logic Flaw
2019-08-18 20:15:00
cve
cve
CVE-2019-15149
2019-08-18 20:15:09
veracode
veracode
Unidirectional-Routing Misconfiguration
2019-08-19 06:49:40
github
github
Undirectional routing wasn't respected in some cases in Mitogen
2019-08-19 23:45:47