Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 530
Alerts This Week
Warning Icon 1 530

Mageia Security Advisory: MGASA-2023-0063 Moderate Risk in Jupyter-Notebook

mageia
Calendar Grey February 27, 2023
Dist Mageia Esm H88
CVE-2023-XXXX highlights a vulnerability in jupyter-notebook that allows unauthorized code execution through user-supplied settings.
Arbitrary code execution when loading configuration files (CVE-2022-39286) References: - https://bugs.mageia.org/show_bug.cgi?id=31156 - https://lists.debian.org/debian-lts-announ...

Summary

Arbitrary code execution when loading configuration files (CVE-2022-39286)

References

- https://bugs.mageia.org/show_bug.cgi?id=31156

- https://lists.debian.org/debian-lts-announce/2022/11/msg00022.html

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/YIDN7JMLK6AOMBQI4QPSW4MBQGWQ5NIN/

- https://www.cve.org/CVERecord?id=CVE-2022-39286

Resolution

SRPMS

- 8/core/jupyter-core-4.7.0-1.1.mga8

Publication date: 27 Feb 2023
URL: https://advisories.mageia.org/MGASA-2023-0062.html
Type: security
CVE: CVE-2022-39286

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.