Описание
ELSA-2024-11048: python-virtualenv security update (IMPORTANT)
[15.1.0-7.0.1]
- Fixes CVE-2024-53899 Quote template strings in activation scripts [Orabug: 37396464]
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
python-virtualenv
15.1.0-7.0.1.el7_9
Связанные CVE
Связанные уязвимости
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287.
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287.
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287.
virtualenv before 20.26.6 allows command injection through the activat ...