Astra Linux - уязвимость в python-reportlab

All versions of the reportlab package are vulnerable to Server-side Request Forgery SSRF via img tags. To reduce this risk, use trustedSchemes and trustedHosts see Reportlab’s documentation. Steps to reproduce by Karan Bamal: 1. Download and install the latest version of the reportlab package. 2...

Astra Linux - уязвимость в python-reportlab

The paraparser module in ReportLab before version 3.5.31 allows for remote code execution. This occurs because the startunichar function in paraparser.py evaluates untrusted user input as a Unicode character in a crafted XML document. The input includes the string “'code='” followed by arbitrary...

EUVD-2021-0223

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2019-19450

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - paraparser in ReportLab before 3.5.31 allows remote code execution because startunichar in paraparser.py evaluates untrusted user input in a unichar element in ...

Linux Distros Unpatched Vulnerability : CVE-2023-33733

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Reportlab up to v3.6.12 allows attackers to execute arbitrary code via supplying a crafted PDF file. CVE-2023-33733 Note that Nessus relies on the presence of t...

TencentOS Server 3: python-reportlab (TSSA-2023:0251)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0251 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

TencentOS Server 4: python-reportlab (TSSA-2025:0163)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0163 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

Alibaba Cloud Linux 3 : 0130: python-reportlab (ALINUX3-SA-2023:0130)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2023:0130 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-19450: paraparser in ReportLab before 3.5....

Linux Distros Unpatched Vulnerability : CVE-2020-28463

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - All versions of package reportlab are vulnerable to Server-side Request Forgery SSRF via img tags. In order to reduce risk, use trustedSchemes & trustedHosts se...

Debian: Security Advisory (DSA-5791-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DLA-3917-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3917-1] python-reportlab security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3917-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès October 13, 2024 https://wiki.debian.org/LTS -...

DSA-5791-1 python-reportlab - security update

Bulletin has no description...

Debian dla-3917 : python-reportlab-doc - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-3917 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3917-1 [email protected] https://www.debian.org/lts/security/...

Debian dsa-5791 : python-reportlab-doc - security update

The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5791 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5791-1 [email protected] https://www.debian.org/security/ Moritz...

DLA-3917-1 python-reportlab - security update

Bulletin has no description...

RHSA-2023:5786 Red Hat Security Advisory: python-reportlab security update

Bulletin has no description...

RHSA-2023:5787 Red Hat Security Advisory: python-reportlab security update

Bulletin has no description...

RHSA-2023:5788 Red Hat Security Advisory: python-reportlab security update

Bulletin has no description...

RHSA-2023:5789 Red Hat Security Advisory: python-reportlab security update

Bulletin has no description...