3 matches found
AZL-79640 CVE-2026-27142 affecting package python-tensorboard 2.16.2-6
Actions which insert URLs into the content attribute of HTML meta tags are not escaped. This can allow XSS if the meta tag also has an http-equiv attribute with the value "refresh". A new GODEBUG setting has been added, htmlmetacontenturlescape, which can be used to disable escaping URLs in actio...
Azure Linux 3.0 Security Update: golang / python-tensorboard (CVE-2021-27918)
The version of golang / python-tensorboard installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-27918 advisory. - encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a...
Azure Linux 3.0 Security Update: golang / python-tensorboard (CVE-2020-16845)
The version of golang / python-tensorboard installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-16845 advisory. - Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint...