[USN-4897-1] Pygments vulnerability
Severity
Medium
Affected Packages
11
CVEs
1
Pygments could be made to hang if it opened a specially crafted file.
Ben Caller discovered that Pygments incorrectly handled parsing certain
files. If a user or automated system were tricked into parsing a specially
crafted file, a remote attacker could cause Pygments to hang or consume
resources, resulting in a denial of service.
| Package | Affected Version |
|---|---|
 pkg:deb/ubuntu/python3-pygments?distro=xenial
|
< 2.1+dfsg-1ubuntu0.2 |
|
pkg:deb/ubuntu/python3-pygments?distro=groovy
|
< 2.3.1+dfsg-4ubuntu0.2 |
|
pkg:deb/ubuntu/python3-pygments?distro=focal
|
< 2.3.1+dfsg-1ubuntu2.2 |
|
pkg:deb/ubuntu/python3-pygments?distro=bionic
|
< 2.2.0+dfsg-1ubuntu0.2 |
|
pkg:deb/ubuntu/python-pygments?distro=xenial
|
< 2.1+dfsg-1ubuntu0.2 |
|
pkg:deb/ubuntu/python-pygments?distro=focal
|
< 2.3.1+dfsg-1ubuntu2.2 |
|
pkg:deb/ubuntu/python-pygments?distro=bionic
|
< 2.2.0+dfsg-1ubuntu0.2 |
|
pkg:deb/ubuntu/python-pygments-doc?distro=xenial
|
< 2.1+dfsg-1ubuntu0.2 |
|
pkg:deb/ubuntu/python-pygments-doc?distro=groovy
|
< 2.3.1+dfsg-4ubuntu0.2 |
|
pkg:deb/ubuntu/python-pygments-doc?distro=focal
|
< 2.3.1+dfsg-1ubuntu2.2 |
|
pkg:deb/ubuntu/python-pygments-doc?distro=bionic
|
< 2.2.0+dfsg-1ubuntu0.2 |
- ID
- USN-4897-1
- Severity
- medium
- URL
- https://ubuntu.com/security/notices/USN-4897-1
- Published
-
2021-03-30T16:33:13
(3 years ago) - Modified
-
2021-03-30T16:33:13
(3 years ago) - Other Advisories
-
-
ALAS2-2023-2117
-
ALAS2-2023-2198
-
ALPINE:CVE-2021-27291
-
ALSA-2021:4150
-
ALSA-2021:4151
-
DSA-4878-1
-
DSA-4889-1
-
ELSA-2021-4150
-
ELSA-2021-4151
-
ELSA-2021-9553
-
FEDORA-2021-166dfc62b2
-
FEDORA-2021-3f975f68c8
-
FREEBSD:CDC685B5-1724-49A1-AD57-2EAAB68E9CC0
-
MS:CVE-2021-27291
-
openSUSE-SU-2021:1521-1
-
openSUSE-SU-2021:3839-1
-
openSUSE-SU-2021:3841-1
-
PYSEC-2021-141
-
RHSA-2021:4139
-
RHSA-2021:4150
-
RHSA-2021:4151
-
RLSA-2021:4150
-
RLSA-2021:4151
-
SUSE-SU-2021:3814-1
-
SUSE-SU-2021:3839-1
-
SUSE-SU-2021:3840-1
-
SUSE-SU-2021:3841-1
-
USN-4897-2
-
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:deb/ubuntu/python3-pygments?distro=xenial | ubuntu |
python3-pygments
|
< 2.1+dfsg-1ubuntu0.2 | xenial | ||
| Affected | pkg:deb/ubuntu/python3-pygments?distro=groovy | ubuntu |
python3-pygments
|
< 2.3.1+dfsg-4ubuntu0.2 | groovy | ||
| Affected | pkg:deb/ubuntu/python3-pygments?distro=focal | ubuntu |
python3-pygments
|
< 2.3.1+dfsg-1ubuntu2.2 | focal | ||
| Affected | pkg:deb/ubuntu/python3-pygments?distro=bionic | ubuntu |
python3-pygments
|
< 2.2.0+dfsg-1ubuntu0.2 | bionic | ||
| Affected | pkg:deb/ubuntu/python-pygments?distro=xenial | ubuntu |
python-pygments
|
< 2.1+dfsg-1ubuntu0.2 | xenial | ||
| Affected | pkg:deb/ubuntu/python-pygments?distro=focal | ubuntu |
python-pygments
|
< 2.3.1+dfsg-1ubuntu2.2 | focal | ||
| Affected | pkg:deb/ubuntu/python-pygments?distro=bionic | ubuntu |
python-pygments
|
< 2.2.0+dfsg-1ubuntu0.2 | bionic | ||
| Affected | pkg:deb/ubuntu/python-pygments-doc?distro=xenial | ubuntu |
python-pygments-doc
|
< 2.1+dfsg-1ubuntu0.2 | xenial | ||
| Affected | pkg:deb/ubuntu/python-pygments-doc?distro=groovy | ubuntu |
python-pygments-doc
|
< 2.3.1+dfsg-4ubuntu0.2 | groovy | ||
| Affected | pkg:deb/ubuntu/python-pygments-doc?distro=focal | ubuntu |
python-pygments-doc
|
< 2.3.1+dfsg-1ubuntu2.2 | focal | ||
| Affected | pkg:deb/ubuntu/python-pygments-doc?distro=bionic | ubuntu |
python-pygments-doc
|
< 2.2.0+dfsg-1ubuntu0.2 | bionic |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |