FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 03:12:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
b3edc7d9-9af5-4daf-88f1-61f68f4308c2	Jupyter Notebook -- vulnerability MITRE reports: In Jupyter Notebook before 5.4.1, a maliciously forged notebook file can bypass sanitization to execute JavaScript in the notebook context. Specifically, invalid HTML is 'fixed' by jQuery after sanitization, making it dangerous. Discovery 2018-03-18 Entry 2018-03-19 py27-notebook py34-notebook py35-notebook py36-notebook < 5.4.1 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8768 CVE-2018-8768

VuXML ID

Description

b3edc7d9-9af5-4daf-88f1-61f68f4308c2

Jupyter Notebook -- vulnerability

MITRE reports:

In Jupyter Notebook before 5.4.1, a maliciously forged notebook file can bypass sanitization to execute JavaScript in the notebook context. Specifically, invalid HTML is 'fixed' by jQuery after sanitization, making it dangerous.

Discovery 2018-03-18
Entry 2018-03-19
py27-notebook
py34-notebook
py35-notebook
py36-notebook

< 5.4.1

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8768
CVE-2018-8768