2020年5月24日(日)、水原希子率いるOFFICE KIKOがオンラインフェス<OK prese…
[markdown2] XSS in python-markdown2
python-markdown2 through 2.3.8 allows XSS because element names are mishandled unless a \w+ match succeeds. For example, an attack might use elementname@ or elementname- with an onclick attribute.
References
https://nvd.nist.gov/vuln/detail/CVE-2020-1…
[ecdsa] Improper Verification of Cryptographic Signature in Pure-Python ECDSA
A flaw was found in all python-ecdsa versions before 0.13.3, where it did not correctly verify whether signatures used DER encoding. Without this verification, a malformed signature could be accepted, making the signature malleable. Without proper veri…
[Twisted] Improper Input Validation in Twisted
In Twisted Web through 20.3.0, there was an HTTP request splitting vulnerability. When presented with two content-length headers, it ignored the first header. When the second content-length value was set to zero, the request body was interpreted as a p…
[Twisted] HTTP Request Smuggling in Twisted
In Twisted Web through 20.3.0, there was an HTTP request splitting vulnerability. When presented with a content-length and a chunked encoding header, the content-length took precedence and the remainder of the request body was interpreted as a pipeline…
[safety] Malicious package may avoid detection in python auditing
Python Auditing Vulnerability
Demonstrates how a malicious package can insert a load-time poison pill to avoid detection by tools like Safety.
Tools that are designed to find vulnerable packages can not ever run in the same python environment that they…
モバイルSuica 利用者が意外と知らない「機種変更前サーバ退避」2分でできる 旧端末でやっておくこと
スマホでピッてやって電車に乗れて、買い物もできるおサイフケータイ。携帯電話キャリアは5G(第5世代移…
[docutils] python-docutils allows insecure usage of temporary files
python-docutils allows insecure usage of temporary files
References
https://nvd.nist.gov/vuln/detail/CVE-2009-5042
https://security-tracker.debian.org/tracker/CVE-2009-5042
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560755
https://github.com/ad…
[requests-kerberos] Improper Authentication in requests-kerberos
python-requests-Kerberos through 0.5 does not handle mutual authentication
References
https://nvd.nist.gov/vuln/detail/CVE-2014-8650
https://github.com/requests/requests-kerberos/issues/35
https://github.com/requests/requests-kerberos/pull/36
https://…
[com.fasterxml.jackson.core:jackson-databind] Deserialization of Untrusted Data in jackson-databind
FasterXML jackson-databind 2.x before 2.6.7.4, 2.7.x before 2.7.9.7, 2.8.x before 2.8.11.5 and 2.9.x before 2.9.10.2 lacks certain xbean-reflect/JNDI blocking, as demonstrated by org.apache.xbean.propertyeditor.JndiConverter.
References
https://nvd.n…