feedparser Cross-site Scripting vulnerability

Cross-site scripting XSS vulnerability in feedparser.py in Universal Feed Parser aka feedparser or python-feedparser 5.x before 5.0.1 allows remote attackers to inject arbitrary web script or HTML via malformed XML comments...

feedparser denial of service vulnerability

feedparser.py in Universal Feed Parser aka feedparser or python-feedparser before 5.0.1 allows remote attackers to cause a denial of service application crash via a malformed DOCTYPE declaration...

openSUSE Security Update : python-feedparser (openSUSE-SU-2011:0314-1)

Various issues in python-feedparser have been fixed, including fixes for crashes due to missing input sanitizaion and a XSS vulnerability. CVE-2011-1156, CVE-2011-1157, CVE-2011-1158 and CVE-2009-5065 have been assigned to these issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

openSUSE Security Update : python-feedparser (openSUSE-SU-2011:0314-1)

Various issues in python-feedparser have been fixed, including fixes for crashes due to missing input sanitizaion and a XSS vulnerability. CVE-2011-1156, CVE-2011-1157, CVE-2011-1158 and CVE-2009-5065 have been assigned to these issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

Mandriva Linux Security Advisory : python-feedparser (MDVSA-2013:118)

Updated python-feedparser package fixes security vulnerability : Universal Feed Parser aka feedparser or python-feedparser before 5.1.2 allows remote attackers to cause a denial of service memory consumption via a crafted XML ENTITY declaration in a non-ASCII encoded document CVE-2012-2921...

Fedora Update for python-feedparser FEDORA-2012-8291

Check for the Version of python-feedparser OpenVAS Vulnerability Test Fedora Update for python-feedparser FEDORA-2012-8291 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Fedora Update for python-feedparser FEDORA-2012-8291

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 17 : python-feedparser-5.1.2-2.fc17 (2012-8291)

Update from 5.1 to 5.1.2. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenabl...

Ubuntu 12.04 LTS : feedparser vulnerability (USN-1449-1)

It was discovered that feedparser did not properly sanitize ENTITY declarations in encoded fields. A remote attacker could exploit this to cause a denial of service via memory exhaustion. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu...

PYSEC-2012-14

Universal Feed Parser aka feedparser or python-feedparser before 5.1.2 allows remote attackers to cause a denial of service memory consumption via a crafted XML ENTITY declaration in a non-ASCII encoded document...

CVE-2012-2921

Universal Feed Parser (python-feedparser) vulnerable to memory‑based DoS via a crafted non‑ASCII XML ENTITY declaration in documents; affected versions before 5.1.2. Root cause is parsing/expansion of a malicious XML ENTITY, enabling remote attacker to exhaust memory. Public references note the i...

Mandriva Update for python-feedparser MDVSA-2011:082 (python-feedparser)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Mandriva Update for python-feedparser MDVSA-2011:082 (python-feedparser)

Check for the Version of python-feedparser OpenVAS Vulnerability Test Mandriva Update for python-feedparser MDVSA-2011:082 python-feedparser Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

openSUSE Security Update : python-feedparser (openSUSE-SU-2011:0314-1)

Various issues in python-feedparser have been fixed, including fixes for crashes due to missing input sanitizaion and a XSS vulnerability. CVE-2011-1156, CVE-2011-1157, CVE-2011-1158 and CVE-2009-5065 have been assigned to these issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

Fedora Update for python-feedparser FEDORA-2011-4894

Check for the Version of python-feedparser OpenVAS Vulnerability Test Fedora Update for python-feedparser FEDORA-2011-4894 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Fedora Update for python-feedparser FEDORA-2011-4894

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for python-feedparser FEDORA-2011-4911

Check for the Version of python-feedparser OpenVAS Vulnerability Test Fedora Update for python-feedparser FEDORA-2011-4911 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Fedora Update for python-feedparser FEDORA-2011-4911

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Mandriva Linux Security Advisory : python-feedparser (MDVSA-2011:082)

Multiple vulnerabilities has been found and corrected in python-feedparser : Cross-site scripting XSS vulnerability in feedparser.py in Universal Feed Parser aka feedparser or python-feedparser before 5.0 allows remote attackers to inject arbitrary web script or HTML via vectors involving nested...

[ MDVSA-2011:082 ] python-feedparser

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2011:082 http://www.mandriva.com/security/ Package : python-feedparser Date : May 2, 2011 Affected: 2010.0, 2010.1 Problem Description: Multiple vulnerabilities has been found and corrected in python-feedparser:...