CVE-2021-20095

Опубликовано: 29 апр. 2021

Источник: ubuntu

Приоритет: medium

Описание

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none

Релиз	Статус	Примечание
bionic	released	2.4.0+dfsg.1-2ubuntu1.1
devel	released	2.8.0+dfsg.1-7
esm-infra-legacy/trusty	not-affected	1.3+dfsg.1-2ubuntu2+esm1
esm-infra/bionic	not-affected	2.4.0+dfsg.1-2ubuntu1.1
esm-infra/focal	not-affected	2.6.0+dfsg.1-1ubuntu2.2
esm-infra/xenial	released	1.3+dfsg.1-6ubuntu0.1~esm1
focal	released	2.6.0+dfsg.1-1ubuntu2.2
groovy	released	2.8.0+dfsg.1-4ubuntu0.1
hirsute	released	2.8.0+dfsg.1-6ubuntu0.1
precise/esm	DNE

Показывать по

Ссылки на источники

Связанные уязвимости

CVE-2021-20095

CVSS3: 7.8

redhat

больше 4 лет назад

A flaw was found in python-babel. A path traversal vulnerability was found in how locale data files are checked and loaded within python-babel, allowing a local attacker to trick an application that uses python-babel to load a file outside of the intended locale directory. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.