[Bug 1146427] VUL-1: CVE-2019-14751: python-nltk: Natural Language Toolkit (NLTK) prior to version 3.4.5 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash)

3 Jul 2022


      https://bugzilla.suse.com/show_bug.cgi?id=1146427
https://bugzilla.suse.com/show_bug.cgi?id=1146427#c7

--- Comment #7 from Swamp Workflow Management  ---
openSUSE-SU-2022:10040-1: An update that fixes two vulnerabilities is now
available.

Category: security (moderate)
Bug References: 1146427,1191030
CVE References: CVE-2019-14751,CVE-2021-3828
JIRA References: 
Sources used:
openSUSE Backports SLE-15-SP2 (src):    python-nltk-3.7-bp152.3.3.1

-- 
You are receiving this mail because:
You are on the CC list for the bug.

bugzilla_noreply＠suse.com

tags

participants (1)