FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-22 18:21:47 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
5f276780-b6ce-11e5-9731-5453ed2e2b49	pygments -- shell injection vulnerability NVD reports: The FontManager._get_nix_font_path function in formatters/img.py in Pygments 1.2.2 through 2.0.2 allows remote attackers to execute arbitrary commands via shell metacharacters in a font name. Discovery 2015-09-28 Entry 2016-01-09 py27-pygments py32-pygments py33-pygments py34-pygments py35-pygments < 2.0.2_1 CVE-2015-8557 http://seclists.org/fulldisclosure/2015/Oct/4 https://bitbucket.org/birkenfeld/pygments-main/commits/0036ab1c99e256298094505e5e92fdacdfc5b0a8

VuXML ID

Description

5f276780-b6ce-11e5-9731-5453ed2e2b49

pygments -- shell injection vulnerability

NVD reports:

The FontManager._get_nix_font_path function in formatters/img.py in Pygments 1.2.2 through 2.0.2 allows remote attackers to execute arbitrary commands via shell metacharacters in a font name.

Discovery 2015-09-28
Entry 2016-01-09
py27-pygments
py32-pygments
py33-pygments
py34-pygments
py35-pygments

< 2.0.2_1

CVE-2015-8557
http://seclists.org/fulldisclosure/2015/Oct/4
https://bitbucket.org/birkenfeld/pygments-main/commits/0036ab1c99e256298094505e5e92fdacdfc5b0a8