-------------------------------------------------------------------------
Debian LTS Advisory DLA-3590-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Guilhem Moulin
September 29, 2023 https://wiki.debian.org/LTS
-------------------------------------------------------------------------
Package : python-reportlab
Version : 3.5.13-1+deb10u2
CVE ID : CVE-2019-19450 CVE-2020-28463
Security issues were discovered in python-reportlab, a Python library
for generating PDFs and graphics, which could lead to remote code
execution or authorization bypass.
CVE-2019-19450
Ravi Prakash Giri discovered a remote code execution vulnerability
via crafted XML document where â$1");
// Echo link
jQuery(this).html(replaced_text);
});
*/
jQuery('.whitebg p').each(function() {
// Get the content
var str = jQuery(this).html();
// Set the regex string
var regex = /(ftp?:\/\/(?:ftp\.|(?!ftp))[a-zA-Z0-9][a-zA-Z0-9-]+[a-zA-Z0-9]\.[^\s]{2,}|ftp\.[a-zA-Z0-9][a-zA-Z0-9-]+[a-zA-Z0-9]\.[^\s]{2,}|ftp?:\/\/(?:ftp\.|(?!ftp))[a-zA-Z0-9]+\.[^\s]{2,}|ftp\.[a-zA-Z0-9]+\.[^\s]{2,})/gi;
// Replace plain text links by hyperlinks
var replaced_text = str.replace(regex, "$1");
// Echo link
jQuery(this).html(replaced_text);
});
/* jQuery('.whitebg .drow').each(function(){
// Get the content
var str = jQuery(this).html();
// Set the regex string
var regex = /(https?:\/\/(?:www\.|(?!www))[a-zA-Z0-9][a-zA-Z0-9-]+[a-zA-Z0-9]\.[^\s]{2,}|www\.[a-zA-Z0-9][a-zA-Z0-9-]+[a-zA-Z0-9]\.[^\s]{2,}|https?:\/\/(?:www\.|(?!www))[a-zA-Z0-9]+\.[^\s]{2,}|www\.[a-zA-Z0-9]+\.[^\s]{2,})/gi;
// Replace plain text links by hyperlinks
var replaced_text = str.replace(regex, "$1");
// Echo link
jQuery(this).html(replaced_text);
});
*/
if (jQuery('div#sppb-addon-1619715121587 .sppb-addon.sppb-addon-raw-html .sppb-addon-content').length) {
jQuery('div#sppb-addon-1619715121587 .sppb-addon.sppb-addon-raw-html .sppb-addon-content').wrap("");
if (jQuery('.whitebg.gray > div:not(.sppb-addon-content.white) .drow:nth-child(2)').length) {
jQuery('div#sppb-addon-1619715121587 .sppb-addon.sppb-addon-raw-html .drow').insertBefore(jQuery('.whitebg.gray > div:not(.sppb-addon-content.white) .drow:nth-child(2)'));
jQuery('Issued Date: ').prependTo(jQuery('.whitebg.gray > div:not(.sppb-addon-content.white) .drow:nth-child(2) .sppb-addon-content'));
} else {
jQuery('div#sppb-addon-1619715121587 .sppb-addon.sppb-addon-raw-html .drow').insertBefore(jQuery('.whitebg.gray > div:not(.sppb-addon-content.white) .drow'));
jQuery('Issued Date: ').prependTo(jQuery('.whitebg.gray > div:not(.sppb-addon-content.white) .drow .sppb-addon-content'));
jQuery('.whitebg.gray > div:not(.sppb-addon-content.white) .drow:nth-child(2)').remove();
}
} else {
jQuery('.drow:contains("Date")').insertBefore(jQuery('.whitebg.gray > div:not(.sppb-addon-content.white) .drow:nth-child(2)'));
}
});
Debian LTS: DLA-3590-1: python-reportlab security update
September 29, 2023
Security issues were discovered in python-reportlab, a Python library for generating PDFs and graphics, which could lead to remote code execution or authorization bypass
Summary
Severity
Package : python-reportlab
Version : 3.5.13-1+deb10u2
CVE ID : CVE-2019-19450 CVE-2020-28463
News
HOWTOs
Features
About Us
Powered By
