CVE-2013-4409

NameCVE-2013-4409
DescriptionAn eval() vulnerability exists in Python Software Foundation Djblets 0.7.21 and Beanbag Review Board before 1.7.15 when parsing JSON requests.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severityhigh
Debian Bugs726039

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
djbletssource(unstable)(unfixed)low726039
python-django-djbletssource(unstable)(unfixed)low

Notes

[squeeze] - python-django-djblets <no-dsa> (Minor issue)
Fix: https://github.com/djblets/djblets/commit/36cd15763742652ca990f913b44e91c69c707269

Search for package or bug name: Reporting problems