VYPR

rpm package

opensuse/python-reportlab&distro=openSUSE Leap 15.1

pkg:rpm/opensuse/python-reportlab&distro=openSUSE%20Leap%2015.1

Vulnerabilities (1)

  • CVE-2019-17626Oct 16, 2019
    affected < 3.4.0-lp151.3.3.1fixed 3.4.0-lp151.3.3.1

    ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in colors.py, as demonstrated by a crafted XML document with '<span color="' followed by arbitrary Python code.