TEMP-0605160-28DAD2

NameTEMP-0605160-28DAD2
Descriptioninsecure python path handling
SourceAutomatically generated temporary name. Not for external reference.
Debian Bugs605150, 605151, 605152, 605153, 605157, 605158, 605159, 605160, 605161, 605163, 605168, 605169

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
calendarserver (PTS)buster, sid9.1+dfsg-1fixed
distcc (PTS)jessie3.1-6.1fixed
stretch3.1-6.2fixed
buster, sid3.1-6.3fixed
gnome-schedule (PTS)jessie2.1.1-4fixed
gnumed-client (PTS)jessie1.4.12+dfsg-1fixed
stretch1.6.11+dfsg-3fixed
buster, sid1.7.3+dfsg-1fixed
gquilt (PTS)jessie, stretch0.25-4fixed
guake (PTS)jessie0.4.4-1fixed
stretch0.8.8-1fixed
buster, sid3.3.0-1fixed
mmass (PTS)jessie5.5.0-4fixed
buster, sid, stretch5.5.0-5fixed
opendnssec (PTS)jessie1:1.4.6-6fixed
stretch1:2.0.4-3fixed
sid1:2.1.3-0.2fixed
pybliographer (PTS)jessie, stretch1.2.16-1fixed
pymca (PTS)jessie4.7.4+dfsg-1fixed
stretch5.1.3+dfsg-1fixed
buster5.2.2+dfsg-2fixed
sid5.3.2+dfsg-1fixed
snappea (PTS)jessie3.0d3-23fixed
buster, sid, stretch3.0d3-24fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
calendarserversource(unstable)2.4.dfsg-2.1low605157
distccsource(unstable)3.1-3.2low605168
distccsourcelenny(not affected)
dlr-languagessource(unstable)20090805+git.e6b28d27+dfsg-3low605158
gnome-schedulesource(unstable)2.1.1-3.1low605169
gnumed-clientsource(unstable)0.8.5-1low605159
gnumed-clientsourcesqueeze0.7.10-1
gquiltsource(unstable)0.22-1.1low605152
gquiltsourcelenny0.20-2+lenny1
guakesource(unstable)0.4.2-3low605163
mmasssource(unstable)3.8.0-2low605150
mmasssourcesqueeze(not affected)
opendnssecsource(unstable)1.1.3-2low605161
pybliographersource(unstable)1.2.14-3low605153
pybliographersourcesqueeze1.2.12-4squeeze1
pymcasource(unstable)4.4.1p1-1low605160
snappeasource(unstable)3.0d3-20low605151

Notes

[lenny] - calendarserver <no-dsa> (Minor issue)
[lenny] - snappea <no-dsa> (Minor issue)
[lenny] - ironpython <no-dsa> (Minor issue)
[lenny] - gnome-schedule <no-dsa> (Minor issue)
[lenny] - gnumed-client <no-dsa> (Minor issue)
[lenny] - distcc <not-affected> (Vulnerable code not present)
[squeeze] - mmass <not-affected> (Doesn't set PYTHONPATH)

Search for package or bug name: Reporting problems