Fedora Update for python-mitogen FEDORA-2019-1f17485159

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora Update for python-mitogen FEDORA-2019-b25dd670a4

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 29 Update: python-mitogen-0.2.8-1.fc29

Mitogen is a Python library for writing distributed self-replicating progra ms. There is no requirement for installing packages, copying files around, writ ing shell snippets, upfront configuration, or providing any secondary link to a remote machine aside from an SSH connection. Due to its origi...

Fedora 30 : python-mitogen (2019-b25dd670a4)

Latest upstream 0.2.8 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security,...

Fedora 29 : python-mitogen (2019-1f17485159)

Latest upstream 0.2.8 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security,...

Undirectional routing wasn't respected in some cases in Mitogen

core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with hypothetica...

GHSA-8RF6-W2MX-4XJH Undirectional routing wasn't respected in some cases in Mitogen

core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with hypothetica...

Unidirectional-Routing Misconfiguration

mitogen contains a unidirectional-routing misconfiguration. The misconfiguration causes the unidirectional-routing protection mechanism to be dropped when a child process is initiated by another child. Ansible extension is not affected...

CVE-2019-15149

core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with hypothetica...

CVE-2019-15149

core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with hypothetica...

PYSEC-2019-104

DISPUTED core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with...

PYSEC-2019-34

DISPUTED core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with...

PYSEC-2019-104

DISPUTED core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with...

Design/Logic Flaw

DISPUTED core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with...

unfurl (>=0.0.1.dev144 <=0.0.1.dev220) potentially affected by CVE-2019-15149 via mitogen (=0.2.7)

mitogen PYPI version =0.2.7 is affected by a known vulnerability. The following packages have a transitive dependency on mitogen and may be impacted: - unfurl =0.0.1.dev144, =0.0.1.dev220 Source cves: CVE-2019-15149 Source advisory: OSV:PYSEC-2019-104...

CVE-2019-15149

CVE-2019-15149 affects Mitogen's core.py in versions before 0.2.8, where a typo drops the unidirectional-routing protection when a child is initiated by another child; the Ansible extension is unaffected. Public details in the connected documents confirm the root cause (typo in core.py) and the i...

CVE-2019-15149

core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with hypothetica...

PT-2019-14014 · Mitogen · Mitogen

Name of the Vulnerable Software and Affected Versions: Mitogen versions prior to 0.2.8 Description: The issue is related to a typo in core.py that affects the unidirectional-routing protection mechanism when a child is initiated by another child. The Ansible extension is not affected. The vendor...