CVE-2019-14806

Опубликовано: 09 авг. 2019

Источник: debian

Описание

Pallets Werkzeug before 0.15.3, when used with Docker, has insufficient debugger PIN randomness because Docker containers share the same machine id.

Пакет	Статус	Версия исправления	Релиз	Тип
python-werkzeug	fixed	0.15.6+dfsg1-1		package
python-werkzeug	fixed	0.14.1+dfsg1-4+deb10u1	buster	package
python-werkzeug	fixed	0.11.15+dfsg1-1+deb9u1	stretch	package
python-werkzeug	not-affected		jessie	package

https://github.com/pallets/werkzeug/commit/00bc43b1672e662e5e3b8cecd79e67fc968fa246

CVE-2019-14806

CVSS3: 7.5

ubuntu

больше 6 лет назад

Pallets Werkzeug before 0.15.3, when used with Docker, has insufficient debugger PIN randomness because Docker containers share the same machine id.

CVE-2019-14806

CVSS3: 7.5

redhat

больше 6 лет назад

Pallets Werkzeug before 0.15.3, when used with Docker, has insufficient debugger PIN randomness because Docker containers share the same machine id.

CVE-2019-14806

CVSS3: 7.5

nvd

больше 6 лет назад

Pallets Werkzeug before 0.15.3, when used with Docker, has insufficient debugger PIN randomness because Docker containers share the same machine id.

openSUSE-SU-2019:2145-1

suse-cvrf

больше 6 лет назад

Security update for python-Werkzeug

openSUSE-SU-2019:2118-1

suse-cvrf

больше 6 лет назад

Security update for python-Werkzeug