3 matches found
CVE-2022-23504
TYPO3 is an open source PHP based web content management system. Versions prior to 9.5.38, 10.4.33, 11.5.20, and 12.1.1 are subject to Sensitive Information Disclosure. Due to the lack of handling user-submitted YAML placeholder expressions in the site configuration backend module, attackers coul...
USN-3685-2 ruby2.0 regression
USN-3685-1 fixed a vulnerability in Ruby. The fix for CVE-2017-0903 introduced a regression in Ruby. This update fixes the problem. Original advisory details: Some of these CVE were already addressed in previous USN: 3439-1, 3553-1, 3528-1. Here we address for the remain releases. It was discover...
SUSE-SU-2017:2105-1 Security update for python-tablib
This update for python-tablib fixes the following issues: - CVE-2017-2810: Use yaml.safeload and yaml.safedump to avoid executing code when importing data bsc1044329...