Important: python-virtualenv

Issue Overview: virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287. CVE-2024-53899 Affected Packages: python-virtualenv Issue...

python-virtualenv security update

15.1.0-7.0.1 - Fixes CVE-2024-53899 Quote template strings in activation scripts Orabug: 37396464...

CVE-2024-53899 affecting package python-virtualenv for versions less than 20.25.0-3

CVE-2024-53899 affecting package python-virtualenv for versions less than 20.25.0-3. A patched version of the package is available...

RHSA-2024:11048 Red Hat Security Advisory: python-virtualenv security update

Bulletin has no description...

RHEL 7 : python-virtualenv (RHSA-2024:11048)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:11048 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-virtualenv (SUSE-SU-2024:4093-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:4093-1 advisory. - CVE-2024-53899: Fixed a command injection through activation scripts bsc1233706 Tenable has extracted t...

Security update for python3-virtualenv

This update for python3-virtualenv fixes the following issues: Security issue fixed: CVE-2024-53899: Fixed a command injection through activation scripts bsc1233706 Non-security issue fixed: Relax version requirements that cannot be provided bsc1232072 Patch Instructions: To install this SUSE...

SUSE: Security Advisory (SUSE-SU-2024:4093-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Advisory (SUSE-SU-2024:4093-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for python-virtualenv

This update for python-virtualenv fixes the following issues: CVE-2024-53899: Fixed a command injection through activation scripts bsc1233706 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you c...

SUSE-SU-2024:4093-1 Security update for python-virtualenv

This update for python-virtualenv fixes the following issues: - CVE-2024-53899: Fixed a command injection through activation scripts bsc1233706...

AZL-53417 CVE-2024-53899 affecting package python-virtualenv for versions less than 20.25.0-3

virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287...

[SECURITY] Fedora 39 Update: python-virtualenv-20.21.1-25.fc39

virtualenv is a tool to create isolated Python environments. virtualenv is a successor to workingenv, and an extension of virtual-python. It is written by Ian Bicking, and sponsored by the Open Planning Project. It is licensed under an MIT-style permissive license...

Fedora: Security Advisory (FEDORA-2024-f7d6b76677)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2024-112e897674)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 40 : python-virtualenv (2024-112e897674)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-112e897674 advisory. - Prevent command injection by quoting template strings in activation scripts Tenable has extracted the preceding description block directly from the Fedora...

Fedora 39 : python-virtualenv (2024-f7d6b76677)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-f7d6b76677 advisory. - Prevent command injection by quoting template strings in activation scripts Tenable has extracted the preceding description block directly from the Fedora...

CentOS 7 : python-virtualenv (RHSA-2020:2081)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2081 advisory. - The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect...

RHSA-2020:0851 Red Hat Security Advisory: python-virtualenv security update

Bulletin has no description...

RHSA-2022:5234 Red Hat Security Advisory: python-virtualenv security update

Bulletin has no description...