294 matches found
5gasp-cli (>=0.1.0 <=0.4.0), ablator (=0.0.1b3) +232 more potentially affected by CVE-2024-53899 via virtualenv (>=12.1.1 <=20.26.4)
virtualenv PYPI version =12.1.1, =0.1.0, =2.0.1, =0.0.2, =0.2.0, =2024.7.4, =0.8.3b20230820, =0.8.3b20231012, =0.8.3b20231012, =1.0.0b0, =0.0.1, =1.0.10 and more Source cves: CVE-2024-53899 Source advisory: OSV:GHSA-RQC4-2HC7-8C8V...
CVE-2024-53899
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287...
AZL-53417 CVE-2024-53899 affecting package python-virtualenv for versions less than 20.25.0-3
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287...
DEBIAN-CVE-2024-53899
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287...
PYSEC-2024-187
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287...
PYSEC-2024-187
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287...
5gasp-cli (>=0.1.0 <=0.4.0), ablator (=0.0.1b3) +232 more potentially affected by CVE-2024-53899 via virtualenv (>=12.1.1 <=20.26.4)
virtualenv PYPI version =12.1.1, =0.1.0, =2.0.1, =0.0.2, =0.2.0, =2024.7.4, =0.8.3b20230820, =0.8.3b20231012, =0.8.3b20231012, =1.0.0b0, =0.0.1, =1.0.10 and more Source cves: CVE-2024-53899 Source advisory: OSV:PYSEC-2024-187...
CVE-2024-53899
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287...
AZL-53645 CVE-2024-53899 affecting package python-virtualenv for versions less than 20.26.6-1
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287...
UBUNTU-CVE-2024-53899
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287...
CVE-2024-53899
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287...
CVE-2024-53899
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287...
Virtualenv 操作系统命令注入漏洞
Virtualenv is an open source Python virtual environment builder from Python Packaging Authority. An operating system command injection vulnerability exists in versions prior to Virtualenv 20.26.6, which stems from the Magic template string not being referenced correctly...
CVE-2024-53899
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287...
CVE-2024-53899
CVE-2024-53899 affects python-virtualenv: versions older than 20.26.6-1 are vulnerable to command injection via activation scripts due to unquoted/magic template strings during activation. The issue is remedied in newer packages (≥ 20.26.6-1); upgrade to the patched release to mitigate. Connected...
Security update for python3
This update for python3 fixes the following issues: Security fixes: CVE-2024-9287: properly quote path names provided when creating a virtual environment bsc1232241 Other fixes: Drop .pyc files from docdir for reproducible builds bsc1230906 Patch Instructions: To install this SUSE update use the...
OPENSUSE-SU-2024:14426-1 python310-virtualenv-20.26.6-1.1 on GA media
These are all security issues fixed in the python310-virtualenv-20.26.6-1.1 package on the GA media of openSUSE Tumbleweed...
[SECURITY] Fedora 40 Update: python-virtualenv-20.21.1-25.fc40
virtualenv is a tool to create isolated Python environments. virtualenv is a successor to workingenv, and an extension of virtual-python. It is written by Ian Bicking, and sponsored by the Open Planning Project. It is licensed under an MIT-style permissive license...
[SECURITY] Fedora 39 Update: python-virtualenv-20.21.1-25.fc39
virtualenv is a tool to create isolated Python environments. virtualenv is a successor to workingenv, and an extension of virtual-python. It is written by Ian Bicking, and sponsored by the Open Planning Project. It is licensed under an MIT-style permissive license...
Fedora: Security Advisory (FEDORA-2024-112e897674)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...