[SECURITY] Fedora 34 Update: python2.7-2.7.18-11.fc34

Python 2 is an old version of the language that is incompatible with the 3.x line of releases. The language is mostly the same, but many details, especi ally how built-in objects like dictionaries and strings work, have changed considerably, and a lot of deprecated features have finally been...

ProFTPd 1.3.5 - 'mod_copy' Remote Command Execution (2)

Exploit Title: ProFTPd 1.3.5 - 'modcopy' Remote Command Execution 2 Date: 25/05/2021 Exploit Author: Shellbr3ak Version: 1.3.5 Tested on: Ubuntu 16.04.6 LTS CVE : CVE-2015-3306 !/usr/bin/env python3 import sys import socket import requests def exploitclient, target: client.connecttarget,21...

ProFTPd 1.3.5 Remote Command Execution

Exploit Title: ProFTPd 1.3.5 - 'modcopy' Remote Command Execution 2 Date: 25/05/2021 Exploit Author: Shellbr3ak Version: 1.3.5 Tested on: Ubuntu 16.04.6 LTS CVE : CVE-2015-3306 !/usr/bin/env python3 import sys import socket import requests def exploitclient, target: client.connecttarget,21...

Exploit for Argument Injection in Dragonfly_Project Dragonfly

CVE-2021-33564 PoC Exploit script for CVE-2021-33564 Argument...

openSUSE Security Update : python-httplib2 (openSUSE-2021-772)

This update for python-httplib2 contains the following fixes : Security fixes included in this update : - CVE-2021-21240: Fixed a regular expression denial of service via malicious header bsc1182053. - CVE-2020-11078: Fixed an issue where an attacker could change request headers and body...

python3 security update

3.6.8-37.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-37 - Fix for CVE-2021-23336 Resolves: rhbz1928904 3.6.8-36 - Fix for CVE-2021-3177 Resolves: rhbz1918168 3.6.8-35 - New options -a and -k for pathfix.py script backported from upstream Resolves: rhbz1917691 3.6.8-3...

Arbitrary Code Execution

python3 is vulnerable to arbitrary code execution. IP address octets are left stripped instead of evaluated as valid IP addresses due to improper input validation of octal strings in the stdlib ipaddress allows unauthenticated remote attackers to perform indeterminate SSRF, RFI, and LFI attacks o...

Amazon Linux 2 : python3 (ALAS-2021-1640)

The version of python3 installed on the remote host is prior to 3.7.9-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2021-1640 advisory. The package python/cpython is vulnerable to Web Cache Poisoning via urllib.parse.parseqsl and urllib.parse.parseqs by usin...

Security update for python-httplib2 (moderate)

openSUSE Security Update: Security update for python-httplib2 Announcement ID: openSUSE-SU-2021:0772-1 Rating: moderate References: 1171998 1182053 Cross-References: CVE-2020-11078 CVE-2021-21240 CVSS scores: CVE-2020-11078 NVD : 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N CVE-2020-11078 SUS...

Photon OS 4.0: Python3 PHSA-2021-4.0-0028

An update of the python3 package has been released. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-4.0-0028. The text itself is copyright C VMware, Inc...

Photon OS 4.0: Python3 PHSA-2021-4.0-0027

An update of the python3 package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-4.0-0027. The text itself is copyright C VMware, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

Exploit for CVE-2019-7238

CVE-201...

Critical Photon OS Security Update - PHSA-2021-0028

Updates of 'python3' packages of Photon OS have been released...

Critical Photon OS Security Update - PHSA-2021-4.0-0028

Updates of 'python3' packages of Photon OS have been released...

Critical Photon OS Security Update - PHSA-2021-4.0-0027

Updates of 'python3-cryptography', 'wireshark' packages of Photon OS have been released...

CentOS 8 : python3 (CESA-2021:1633)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:1633 advisory. - python: CRLF injection via HTTP request method in httplib/http.client CVE-2020-26116 - python: Unsafe use of eval on data retrieved via HTTP in the...

RHEL 8 : python3 (RHSA-2021:1633)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1633 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

Ubuntu 20.04 LTS : pip vulnerability (USN-4961-1)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4961-1 advisory. It was discovered that pip incorrectly handled unicode separators in git references. A remote attacker could possibly use this issue to install a different revisi...

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2021-1886)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Moderate: python3 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...