CentOS 6 : python-reportlab (RHSA-2020:0197)

The remote CentOS Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:0197 advisory. - ReportLab through 3.5.26 allows remote code execution because of toColorevalarg in colors.py, as demonstrated by a crafted XML document with 'span color='...

SUSE-SU-2020:0255-1 Security update for python-reportlab

This update for python-reportlab fixes the following issues: - CVE-2019-17626: Fixed a potential remote code execution because of the lack of input sanitization in toColor bsc1154370...

CentOS: Security Advisory for python-reportlab (CESA-2020:0195)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CentOS: Security Advisory for python-reportlab (CESA-2020:0197)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

python security update

CentOS Errata and Security Advisory CESA-2020:0195 An update for python-reportlab is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

MGASA-2020-0059 Updated python-reportlab packages fix security vulnerability

A code injection vulnerability in python-reportlab allows an attacker to execute code while parsing a color attribute. An application that uses python-reportlab to parse untrusted input files may be vulnerable to this flaw and allow remote code execution CVE-2019-17626...

Updated python-reportlab packages fix security vulnerability

A code injection vulnerability in python-reportlab allows an attacker to execute code while parsing a color attribute. An application that uses python-reportlab to parse untrusted input files may be vulnerable to this flaw and allow remote code execution CVE-2019-17626...

RHEL 8 : python-reportlab (RHSA-2020:0230)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:0230 advisory. Python-reportlab is a library used for generation of PDF documents. Security Fixes: python-reportlab: code injection in colors.py allows attacker to...

Important: Red Hat Security Advisory: python-reportlab security update

An update for python-reportlab is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity ratin...

python-reportlab: code injection in colors.py allows attacker to execute code

A code injection vulnerability in python-reportlab allows an attacker to execute code while parsing a color attribute. An application that uses python-reportlab to parse untrusted input files may be vulnerable to this flaw and allow remote code execution...

Fedora: Security Advisory for python-reportlab (FEDORA-2020-d2fb999600)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 30 : python-reportlab (2020-d2fb999600)

Release 3.5.34 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security, Inc. Th...

python-reportlab: code injection in colors.py allows attacker to execute code

A code injection vulnerability in python-reportlab allows an attacker to execute code while parsing a color attribute. An application that uses python-reportlab to parse untrusted input files may be vulnerable to this flaw and allow remote code execution...

Important: Red Hat Security Advisory: python-reportlab security update

An update for python-reportlab is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...

Scientific Linux Security Update : python-reportlab on SL7.x x86_64 (20200122)

Security Fixes : - python-reportlab: code injection in colors.py allows attacker to execute code CVE-2019-17626 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid133197; scriptversion"1.4";...

Scientific Linux Security Update : python-reportlab on SL6.x i386/x86_64 (20200121)

Security Fixes : - python-reportlab: code injection in colors.py allows attacker to execute code CVE-2019-17626 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid133193; scriptversion"1.4";...

RHEL 8 : python-reportlab (RHSA-2020:0201)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:0201 advisory. Python-reportlab is a library used for generation of PDF documents. Security Fixes: python-reportlab: code injection in colors.py allows attacker to...

Oracle Linux 7 : python-reportlab (ELSA-2020-0195)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-0195 advisory. 2.5-9.el77.1 - Do not eval strings passed to toColor - Resolves: 1788552 2.5-9 - Mass rebuild 2014-01-24 2.5-8 - Mass rebuild 2013-12-27 2.5-7 - Rebuilt for...

Oracle Linux 8 : python-reportlab (ELSA-2020-0201)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-0201 advisory. 3.4.0-6.el810.2 - Fix Requires for doc subpackage - Resolves: 1788556 3.4.0-6.el810.1 - Do not eval strings passed to toColor - Resolves: 1788555 Tenable has...

Oracle Linux 6 : python-reportlab (ELSA-2020-0197)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-0197 advisory. 2.3-3.el610.1 - Do not eval strings passed to toColor - Resolves: 1788551 Tenable has extracted the preceding description block directly from the Oracle Linux...