7 matches found
openSUSE: Security Advisory for python-nltk (openSUSE-SU-2020:0436-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 31 : 1:python-nltk (2020-0f785235bb)
Update to latest stable release to fix CVE-2019-14751. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
CVE-2019-14751
CVE-2019-14751 affects the Python package NLTK (downloader) prior to 3.4.5. The vulnerability is a directory traversal (Zip Slip) during extraction of an NLTK ZIP package, enabling an attacker to write arbitrary files. OpenSUSE and Fedora advisories indicate the fix is to upgrade to 3.4.5 or late...
CVE-2019-14751
NLTK Downloader before 3.4.5 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in an NLTK package ZIP archive that is mishandled during extraction...
CVE-2019-14751
NLTK Downloader before 3.4.5 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in an NLTK package ZIP archive that is mishandled during extraction...
UBUNTU-CVE-2019-14751
NLTK Downloader before 3.4.5 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in an NLTK package ZIP archive that is mishandled during extraction...
Exploit for Path Traversal in Nltk
CVE-2019-14751PoC A Proof of Concept for CVE-2019-14751...