CVE-2013-7489

NameCVE-2013-7489
DescriptionThe Beaker library through 1.11.0 for Python is affected by deserialization of untrusted data, which could lead to arbitrary code execution.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severitymedium
Debian Bugs966197

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
beaker (PTS)stretch1.8.1-1vulnerable
buster1.10.0-1vulnerable
bullseye, sid1.10.0-3vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
beakersource(unstable)(unfixed)966197

Notes

[buster] - beaker <no-dsa> (Minor issue)
[stretch] - beaker <no-dsa> (Minor issue)
https://github.com/bbangert/beaker/issues/191
https://www.openwall.com/lists/oss-security/2020/05/14/11

Search for package or bug name: Reporting problems