2 matches found
DEBIAN-CVE-2023-41334
Astropy is a project for astronomy in Python that fosters interoperability between Python astronomy packages. Version 5.3.2 of the Astropy core package is vulnerable to remote code execution due to improper input validation in the TranformGraph.todotgraph function. A malicious user can provide a...
PT-2024-12939
Name of the Vulnerable Software and Affected Versions Astropy version 5.3.2 Description The issue is related to remote code execution due to improper input validation in the TranformGraph.to dot graph function. A malicious user can provide a command or a script file as a value to the savelayout...