rpm package
opensuse/python-reportlab&distro=openSUSE Leap 15.1
pkg:rpm/opensuse/python-reportlab&distro=openSUSE%20Leap%2015.1
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-17626 | — | < 3.4.0-lp151.3.3.1 | 3.4.0-lp151.3.3.1 | Oct 16, 2019 | ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in colors.py, as demonstrated by a crafted XML document with '<span color="' followed by arbitrary Python code. |
- CVE-2019-17626Oct 16, 2019affected < 3.4.0-lp151.3.3.1fixed 3.4.0-lp151.3.3.1
ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in colors.py, as demonstrated by a crafted XML document with '<span color="' followed by arbitrary Python code.