Download
| Alert*
oval:org.secpod.oval:def:1504786
python3-pygments is installed oval:org.secpod.oval:def:52665 pygments: syntax highlighting package written in Python Pygments could be made to crash or run programs if it processed a specially crafted font request. oval:org.secpod.oval:def:602332 Javantea discovered that pygments, a generic syntax highlighter, is prone to a shell injection vulnerability allowing a remote attacker to execute arbitrary code via shell metacharacters in a font name. oval:org.secpod.oval:def:89044306 python3-Pygments is installed oval:org.secpod.oval:def:702914 pygments: syntax highlighting package written in Python Pygments could be made to crash or run programs if it processed a specially crafted font request. oval:org.secpod.oval:def:89044305 This update for python-Pygments fixes the following issues: - CVE-2021-20270: Fixed an infinite loop in SML lexer which may lead to DoS oval:org.secpod.oval:def:702924 python3-pygments is installed oval:org.secpod.oval:def:71224 Ben Caller discovered that python3-pygments, a syntax highlighting package written in Python 3, used regular expressions which could result in denial of service. oval:org.secpod.oval:def:71248 pygments: Generic syntax highlighter Pygments could be made to hang if it opened a specially crafted file. oval:org.secpod.oval:def:506501 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix: * pyt ... oval:org.secpod.oval:def:1505445 python-docs [3.6.7-2] - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz#1695587 [3.6.7-1] - Modify for RHEL8 - Update to new Python version - Resolves: rhbz#1656044 python-wheel [1:0.31.1-3] - Adjusted the postun scriptlets to enable upgrading to RHEL 9 - Resolves: rhbz#193305 ... oval:org.secpod.oval:def:2500951 Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. oval:org.secpod.oval:def:89047310 This update for python-Pygments fixes the following issues: - CVE-2021-27291: Fixed ReDoS via crafted malicious input . oval:org.secpod.oval:def:605472 Ben Caller discovered that Pygments, a syntax highlighting package written in Python 3, used regular expressions which could result in denial of service. |