6 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-3539
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - base/oi/doa.py in the Rope library in CPython aka Python allows remote attackers to execute arbitrary code by leveraging an unsafe call to pickle.load...
OPENSUSE-SU-2024:10052-1 python-rope-0.10.2-2.2 on GA media
These are all security issues fixed in the python-rope-0.10.2-2.2 package on the GA media of openSUSE Tumbleweed...
Mageia: Security Advisory (MGASA-2015-0122)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated python-rope packages fix security vulnerabilities
The python-rope utility has been caught passing remotely supplied data to pickle.load, enabling possible code-execution attacks. This can happen when the 'performdoa' dynamic object analysis option is enabled, which it previously had been by default. This update changes the default configuration ...
MGASA-2015-0122 Updated python-rope packages fix security vulnerabilities
The python-rope utility has been caught passing remotely supplied data to pickle.load, enabling possible code-execution attacks. This can happen when the 'performdoa' dynamic object analysis option is enabled, which it previously had been by default. This update changes the default configuration ...
openSUSE Security Update : python-rope (openSUSE-2015-190)
python-rope was updated to fix one security issue. This security issue was fixed : - CVE-2014-3539: Disable dynamic object analysis by default bnc916890. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Securi...