22 matches found
PT-2022-25538 · Unknown · Mipc Camera Firmware
Name of the Vulnerable Software and Affected Versions: mIPC camera firmware version 5.3.1.2003161406 Description: The issue is related to an unlimited strcpy on user input when setting a locale file, which leads to a stack buffer overflow. This occurs in the mIPC camera firmware. Recommendations:...
Security update for python-Babel (important)
openSUSE Security Update: Security update for python-Babel Announcement ID: openSUSE-SU-2021:1553-1 Rating: important References: 1185768 Cross-References: CVE-2021-42771 CVSS scores: CVE-2021-42771 SUSE: 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.2 An...
SUSE SLED15 / SLES15 Security Update : python-Babel (SUSE-SU-2021:3945-1)
The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:3945-1 advisory. - Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files containing serialized Python objects via directory...
python-babel: Relative path traversal allows attacker to load arbitrary locale files and execute arbitrary code
A flaw was found in python-babel. A path traversal vulnerability was found in how locale data files are checked and loaded within python-babel, allowing a local attacker to trick an application that uses python-babel to load a file outside of the intended locale directory. The highest threat from...
python-babel: Relative path traversal allows attacker to load arbitrary locale files and execute arbitrary code
A flaw was found in python-babel. A path traversal vulnerability was found in how locale data files are checked and loaded within python-babel, allowing a local attacker to trick an application that uses python-babel to load a file outside of the intended locale directory. The highest threat from...
python-babel: Relative path traversal allows attacker to load arbitrary locale files and execute arbitrary code
A flaw was found in python-babel. A path traversal vulnerability was found in how locale data files are checked and loaded within python-babel, allowing a local attacker to trick an application that uses python-babel to load a file outside of the intended locale directory. The highest threat from...
python-babel: Relative path traversal allows attacker to load arbitrary locale files and execute arbitrary code
A flaw was found in python-babel. A path traversal vulnerability was found in how locale data files are checked and loaded within python-babel, allowing a local attacker to trick an application that uses python-babel to load a file outside of the intended locale directory. The highest threat from...
python-babel: Relative path traversal allows attacker to load arbitrary locale files and execute arbitrary code
A flaw was found in python-babel. A path traversal vulnerability was found in how locale data files are checked and loaded within python-babel, allowing a local attacker to trick an application that uses python-babel to load a file outside of the intended locale directory. The highest threat from...
python-babel: Relative path traversal allows attacker to load arbitrary locale files and execute arbitrary code
A flaw was found in python-babel. A path traversal vulnerability was found in how locale data files are checked and loaded within python-babel, allowing a local attacker to trick an application that uses python-babel to load a file outside of the intended locale directory. The highest threat from...
babel security and bug fix update
An update is available for babel. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Babel provides tools to build and work with gettext message catalogs, and a...
CVE-2021-42771
Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files containing serialized Python objects via directory traversal, leading to code execution...
python-babel: Relative path traversal allows attacker to load arbitrary locale files and execute arbitrary code
A flaw was found in python-babel. A path traversal vulnerability was found in how locale data files are checked and loaded within python-babel, allowing a local attacker to trick an application that uses python-babel to load a file outside of the intended locale directory. The highest threat from...
python-babel: Relative path traversal allows attacker to load arbitrary locale files and execute arbitrary code
A flaw was found in python-babel. A path traversal vulnerability was found in how locale data files are checked and loaded within python-babel, allowing a local attacker to trick an application that uses python-babel to load a file outside of the intended locale directory. The highest threat from...
python-babel: Relative path traversal allows attacker to load arbitrary locale files and execute arbitrary code
A flaw was found in python-babel. A path traversal vulnerability was found in how locale data files are checked and loaded within python-babel, allowing a local attacker to trick an application that uses python-babel to load a file outside of the intended locale directory. The highest threat from...
EulerOS 2.0 SP9 : babel (EulerOS-SA-2021-2235)
According to the version of the babel packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Relative Path Traversal in Babel 2.9.0 allows an attacker to load arbitrary locale files on disk and execute arbitrary code.CVE-2021-20095 Note that...
OESA-2021-1194 babel security update
Babel is an integrated collection of utilities that assist in internationalizing and localizing Python applications, with an emphasis on web-based applications. Security Fixes: Relative Path Traversal in Babel 2.9.0 allows an attacker to load arbitrary locale files on disk and execute arbitrary...
[ASA-202105-15] python-babel: arbitrary code execution
Arch Linux Security Advisory ASA-202105-15 ========================================== Severity: Medium Date : 2021-05-19 CVE-ID : CVE-2021-20095 Package : python-babel Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1894 Summary ======= The package python-bab...
Directory Traversal
babel is vulnerable to directory traversal. The vulnerability allows an attacker to load arbitrary locale .dat files which contain serialized Python objects. This can potentially lead to arbitrary code execution If an attacker is able to load a malicious local .dat file through Babel.Locale...
Security Bulletin: Vulnerabilities in GNU C Library affects IBM SmartCloud Provisioning for Software Virtual Appliance (CVE-2014-5119, CVE-2014-0475)
Summary Vulnerabilities have been identified in the GNU C Library glibc packages for the standard C and the standard math libraries on Linux systems, that affect IBM SmartCloud Provisioning 2.1 for Software Virtual Appliance CVE-2014-5119, CVE-2014-0475. Vulnerability Details CVE-ID: CVE-2014-511...
CVE-2011-0729
dbusbackend/ls-dbus-backend in the D-Bus backend in language-selector before 0.6.7 does not restrict access on the basis of a PolicyKit check result, which allows local users to modify the /etc/default/locale and /etc/environment files via a 1 SetSystemDefaultLangEnv or 2...