| Summary: | python-beaker new security issue due to deserialization of untrusted data CVE-2013-7489 | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | David Walser <luigiwalser> |
| Component: | Security | Assignee: | Philippe Makowski <makowski.mageia> |
| Status: | NEW --- | QA Contact: | Sec team <security> |
| Severity: | normal | ||
| Priority: | Normal | CC: | geiger.david68210, lewyssmith, smelror |
| Version: | Cauldron | ||
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | MGA9TOO | ||
| Source RPM: | python-beaker-1.11.0-3.mga8.src.rpm | CVE: | |
| Status comment: | No fix available as of end of 2020 | ||
|
Description
David Walser
2020-05-15 20:16:04 CEST
David Walser
2020-05-15 20:16:17 CEST
Status comment:
(none) =>
No fix available as of May 2020 Leaving this with bugsquad until a fix materialises. CC:
(none) =>
lewyssmith Hi Here issue is closed with a merge: https://github.com/bbangert/beaker/issues/35 Whereas this is still open: https://github.com/bbangert/beaker/issues/191 There is a CVE here: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7489 Assigning to registered packager. Assignee:
bugsquad =>
makowski.mageia
Aurelien Oudelet
2020-08-26 16:21:40 CEST
Summary:
python-beaker new security issue due to deserialization of untrusted data =>
python-beaker new security issue due to deserialization of untrusted data CVE-2013-7489
David Walser
2020-12-28 17:10:05 CET
Whiteboard:
MGA7TOO =>
MGA8TOO, MGA7TOO
David Walser
2020-12-29 00:22:05 CET
Status comment:
No fix available as of May 2020 =>
No fix available as of end of 2020 Removing Mageia 7 from whiteboard due to EOL: https://blog.mageia.org/en/2021/06/08/mageia-7-will-reach-end-of-support-on-30th-of-june-the-king-is-dead-long-live-the-king/ Whiteboard:
MGA8TOO, MGA7TOO =>
MGA8TOO Package has been updated to version 1.12.1 in Cauldron. No mention in the changelog about the security issues afaics. CC:
(none) =>
smelror Removing Mageia 8 from whiteboard due to EOL! Whiteboard:
MGA8TOO =>
MGA9TOO |