rpm package
opensuse/python-reportlab&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/python-reportlab&distro=openSUSE%20Tumbleweed
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-17626 | — | < 4.0.7-1.3 | 4.0.7-1.3 | Oct 16, 2019 | ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in colors.py, as demonstrated by a crafted XML document with '<span color="' followed by arbitrary Python code. |
- CVE-2019-17626Oct 16, 2019affected < 4.0.7-1.3fixed 4.0.7-1.3
ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in colors.py, as demonstrated by a crafted XML document with '<span color="' followed by arbitrary Python code.