52 matches found
Astra Linux - уязвимость в python-babel
In Babel.Locale before version 2.9.1, attackers could load arbitrary locale .dat files containing serialized Python objects through directory traversal, resulting in code execution...
ROS-20250212-10
A vulnerability in the Python Babel library that helps internationalize and localize Python applications is associated with Input validation errors when processing directory traversal sequences in .dat locale files in Babel.Locale. Exploitation of the vulnerability could allow an attacker to...
RHEL 7 : python-babel (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - python-babel: Relative path traversal allows attacker to load arbitrary locale files and execute arbitrar...
RHEL 6 : python-babel (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - python-babel: Relative path traversal allows attacker to load arbitrary locale files and execute arbitrar...
Security Bulletin: IBM Cognos Analytics is affected but not classified as vulnerable to vulnerabilities in multiple Open Source Software (OSS) components
Summary IBM Cognos Analytics is affected but not classified as vulnerable, based on current information, to vulnerabilities in multiple Open-Source Software OSS packages. These vulnerabilities have been addressed by upgrading to a non-vulnerable version of the OSS package or removing the OSS...
Amazon Linux AMI : python-babel (ALAS-2023-1720)
It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1720 advisory. Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files containing serialized Python objects via directory traversal, leading to code execution. CVE-2021-42771 Tenable has...
Medium: python-babel
Issue Overview: Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files containing serialized Python objects via directory traversal, leading to code execution. CVE-2021-42771 Affected Packages: python-babel Issue Correction: Run yum update python-babel or yum upda...
SUSE: Security Advisory (SUSE-SU-2022:3590-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES15 Security Update : python-Babel (SUSE-SU-2022:3590-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3590-1 advisory. - Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files containing serialized Python objects via directory...
SUSE-SU-2022:3590-1 Security update for python-Babel
This update for python-Babel fixes the following issues: - CVE-2021-42771: Fixed relative path traversal bsc1185768...
Security Bulletin: CVE-2021-42771
Summary A flaw was found in python-babel. A path traversal vulnerability was found in how locale data files are checked and loaded within python-babel, allowing a local attacker to trick an application that uses python-babel to load a file outside of the intended locale directory. The highest...
openSUSE: Security Advisory for python-Babel (openSUSE-SU-2021:1553-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Mageia: Security Advisory (MGASA-2021-0267)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:0029-1 Security update for python-Babel
This update for python-Babel fixes the following issues: - CVE-2021-42771: Fixed relative path traversal leading to loading arbitrary locale files on disk and executing arbitrary code bsc1185768...
SUSE-SU-2022:0028-1 Security update for python-Babel
This update for python-Babel fixes the following issues: - CVE-2021-42771: Fixed relative path traversal leading to loading arbitrary locale files on disk and executing arbitrary code bsc1185768...
SUSE SLES12 Security Update : python-Babel (SUSE-SU-2021:4161-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2021:4161-1 advisory. - Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files containing serialized Python objects via directory traversal,...
SUSE: Security Advisory (SUSE-SU-2021:4161-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2021:4161-1 Security update for python-Babel
This update for python-Babel fixes the following issues: - CVE-2021-42771: Fixed relative path traversal that may lead to arbitrary locale files loading and arbitrary code execution bsc1185768...
OPENSUSE-SU-2021:1553-1 Security update for python-Babel
This update for python-Babel fixes the following issues: - CVE-2021-42771: Fixed relative path traversal that may lead to arbitrary locale files loading and arbitrary code execution bsc1185768. This update was imported from the SUSE:SLE-15-SP2:Update update project...
Debian: Security Advisory (DSA-5018-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...