SUSE-SU-2022:2752-1

Опубликовано: 10 авг. 2022

Источник: suse-cvrf

Описание

Security update for python-codecov

This update for python-codecov fixes the following issues:

CVE-2019-10800: Fixed sanitization of gcov arguments before being being provided to the popen method (bsc#1201494).

Список пакетов

openSUSE Leap 15.3

python2-codecov-2.0.15-150100.3.3.1

python3-codecov-2.0.15-150100.3.3.1

openSUSE Leap 15.4

python3-codecov-2.0.15-150100.3.3.1

Ссылки

https://www.suse.com/support/update/announcement/2022/suse-su-20222752-1/
Link for SUSE-SU-2022:2752-1
https://lists.suse.com/pipermail/sle-security-updates/2022-August/011881.html
E-Mail link for SUSE-SU-2022:2752-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1201494
SUSE Bug 1201494
https://www.suse.com/security/cve/CVE-2019-10800/
SUSE CVE CVE-2019-10800 page

Описание

This affects the package codecov before 2.0.16. The vulnerability occurs due to not sanitizing gcov arguments before being being provided to the popen method.

Затронутые продукты

openSUSE Leap 15.3:python2-codecov-2.0.15-150100.3.3.1

openSUSE Leap 15.3:python3-codecov-2.0.15-150100.3.3.1

openSUSE Leap 15.4:python3-codecov-2.0.15-150100.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-10800.html
CVE-2019-10800
https://bugzilla.suse.com/1201494
SUSE Bug 1201494

SUSE-SU-2022:2752-1

Описание

Список пакетов

openSUSE Leap 15.3

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2019-10800

Описание

Затронутые продукты

Ссылки