VYPR

rpm package

opensuse/python-reportlab&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/python-reportlab&distro=openSUSE%20Tumbleweed

Vulnerabilities (1)

  • CVE-2019-17626Oct 16, 2019
    affected < 4.0.7-1.3fixed 4.0.7-1.3

    ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in colors.py, as demonstrated by a crafted XML document with '<span color="' followed by arbitrary Python code.