Описание
IPython (Interactive Python) is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming language. Affected versions are subject to an arbitrary code execution vulnerability achieved by not properly managing cross user temporary files. This vulnerability allows one user to run code as another on the same machine. All users are advised to upgrade.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| devel | not-affected | 8.5.0-4 |
| esm-apps/bionic | released | 5.5.0-1ubuntu0.1~esm1 |
| esm-apps/focal | released | 7.13.0-1ubuntu0.1~esm1 |
| esm-apps/jammy | not-affected | 7.31.1-1 |
| esm-apps/noble | not-affected | 8.5.0-4 |
| esm-apps/xenial | ignored | changes too intrusive |
| esm-infra-legacy/trusty | ignored | changes too intrusive |
| focal | ignored | end of standard support, was needed |
| hirsute | ignored | end of life |
Показывать по
Ссылки на источники
4.6 Medium
CVSS2
8.2 High
CVSS3
Связанные уязвимости
IPython (Interactive Python) is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming language. Affected versions are subject to an arbitrary code execution vulnerability achieved by not properly managing cross user temporary files. This vulnerability allows one user to run code as another on the same machine. All users are advised to upgrade.
IPython (Interactive Python) is a command shell for interactive comput ...
Execution with Unnecessary Privileges in ipython
Уязвимость команды shell командной оболочки для интерактивных вычислений IPython, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
4.6 Medium
CVSS2
8.2 High
CVSS3