jupyterhubutils (>=0.11.0 <=0.25.0), jupyterlabutils (>=0.9.1 <=0.10.0) +4 more potentially affected by CVE-2022-31027 via oauthenticator (>=0.13.0 <=14.2.0)

oauthenticator PYPI version =0.13.0, =0.11.0, =0.9.1, =3.0.0, =0.30.1, =0.2.25, =0.0.2, =0.4.2 Source cves: CVE-2022-31027 Source advisory: OSV:PYSEC-2022-206...

jupyterhubutils (>=0.11.0 <=0.25.0), jupyterlabutils (>=0.9.1 <=0.10.0) +4 more potentially affected by CVE-2022-31027 via oauthenticator (>=0.13.0 <=14.2.0)

oauthenticator PYPI version =0.13.0, =0.11.0, =0.9.1, =3.0.0, =0.30.1, =0.2.25, =0.0.2, =0.4.2 Source cves: CVE-2022-31027 Source advisory: OSV:GHSA-R7V4-JWX9-WX43...

GHSA-Q326-JHW3-699G Improper Neutralization of Input During Web Page Generation in IPython

Cross-site scripting XSS vulnerability in IPython 3.x before 3.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving JSON error messages and the /api/contents path...

Improper Neutralization of Input During Web Page Generation in IPython

Cross-site scripting XSS vulnerability in IPython 3.x before 3.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving JSON error messages and the /api/contents path...

IPython vulnerable to cross site request forgery (CSRF)

IPython Interactive Python is a command shell. Cross-site request forgery in the REST API is possible in in IPython 2 and 3. Versions 2.4.1 and 3.2.3 contain patches...

GHSA-7FC2-RM35-2PP7 IPython vulnerable to cross site request forgery (CSRF)

IPython Interactive Python is a command shell. Cross-site request forgery in the REST API is possible in in IPython 2 and 3. Versions 2.4.1 and 3.2.3 contain patches...

GHSA-75CW-5CGV-G853 IPython Notebook vulnerable to improper validation of the origin of websocket requests

IPython Notebook 0.12 through 1.x before 1.2.0 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

IPython Notebook vulnerable to improper validation of the origin of websocket requests

IPython Notebook 0.12 through 1.x before 1.2.0 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

GHSA-4VWQ-X64Q-J4CJ Improper Neutralization of Input During Web Page Generation in Jupyter Notebook

Cross-site scripting XSS vulnerability in the file browser in notebook/notebookapp.py in IPython Notebook before 3.2.2 and Jupyter Notebook 4.0.x before 4.0.5 allows remote attackers to inject arbitrary web script or HTML via a folder name. NOTE: this was originally reported as a cross-site reque...

Improper Neutralization of Input During Web Page Generation in Jupyter Notebook

Cross-site scripting XSS vulnerability in the file browser in notebook/notebookapp.py in IPython Notebook before 3.2.2 and Jupyter Notebook 4.0.x before 4.0.5 allows remote attackers to inject arbitrary web script or HTML via a folder name. NOTE: this was originally reported as a cross-site reque...

Improper Neutralization of Input During Web Page Generation in IPython

Cross-site scripting XSS vulnerability in IPython before 3.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving JSON error messages and the /api/notebooks path...

GHSA-66GW-5XPF-GFP5 Improper Neutralization of Input During Web Page Generation in IPython

Cross-site scripting XSS vulnerability in IPython before 3.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving JSON error messages and the /api/notebooks path...

[SECURITY] Fedora 35 Update: ipython-7.26.0-3.fc35

IPython provides a replacement for the interactive Python interpreter with extra functionality. Main features: Comprehensive object introspection. Input history, persistent across sessions. Caching of output results during a session with automatically generated references. Readline based name...

[SECURITY] Fedora 34 Update: ipython-7.20.0-2.fc34

IPython provides a replacement for the interactive Python interpreter with extra functionality. Main features: Comprehensive object introspection. Input history, persistent across sessions. Caching of output results during a session with automatically generated references. Readline based name...

Fedora: Security Advisory for ipython (FEDORA-2022-b58d156ab0)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for ipython (FEDORA-2022-b9e38f8a56)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Debian DSA-5065-1 : ipython - security update

The remote Debian 10 / 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5065 advisory. - IPython Interactive Python is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming language...

Debian: Security Advisory (DSA-5065-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 5065-1] ipython security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5065-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 31, 2022 https://www.debian.org/security/faq -...

Mageia: Security Advisory (MGASA-2014-0320)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...