Описание
Security update for python-notebook
This update for python-notebook fixes the following issue:
- CVE-2020-26215: Fixed an open redirect vulnerability (boo#1180458).
Список пакетов
openSUSE Leap 15.2
jupyter-notebook-5.7.8-lp152.2.3.1
jupyter-notebook-doc-5.7.8-lp152.2.3.1
jupyter-notebook-lang-5.7.8-lp152.2.3.1
jupyter-notebook-latex-5.7.8-lp152.2.3.1
python2-notebook-5.7.8-lp152.2.3.1
python2-notebook-lang-5.7.8-lp152.2.3.1
python3-notebook-5.7.8-lp152.2.3.1
python3-notebook-lang-5.7.8-lp152.2.3.1
Ссылки
- E-Mail link for openSUSE-SU-2021:0024-1
- SUSE Security Ratings
- SUSE Bug 1180458
- SUSE CVE CVE-2020-26215 page
Описание
Jupyter Notebook before version 6.1.5 has an Open redirect vulnerability. A maliciously crafted link to a notebook server could redirect the browser to a different website. All notebook servers are technically affected, however, these maliciously crafted links can only be reasonably made for known notebook server hosts. A link to your notebook server may appear safe, but ultimately redirect to a spoofed server on the public internet. The issue is patched in version 6.1.5.
Затронутые продукты
openSUSE Leap 15.2:jupyter-notebook-5.7.8-lp152.2.3.1
openSUSE Leap 15.2:jupyter-notebook-doc-5.7.8-lp152.2.3.1
openSUSE Leap 15.2:jupyter-notebook-lang-5.7.8-lp152.2.3.1
openSUSE Leap 15.2:jupyter-notebook-latex-5.7.8-lp152.2.3.1
Ссылки
- CVE-2020-26215
- SUSE Bug 1180458