| luis220413 | Why is this build producing packages that do not install any files other than the Debian changelog and copyright? https://launchpad.net/~luis220413/+archive/ubuntu/security-updates/+build/24229909 | 07:10 |
|---|---|---|
| luis220413 | This is an indirect build-dependency needed to fix CVE-2021-32798 in jupyter-notebook in Ubuntu 20.04 (focal). | 07:11 |
| ubottu | The Jupyter notebook is a web-based notebook environment for interactive computing. In affected versions untrusted notebook can execute code on load. Jupyter Notebook uses a deprecated version of Google Caja to sanitize user inputs. A public Caja bypass can be used to trigger an XSS when a victim opens a malicious ipynb document in Jupyter Notebook. The XSS allows an attacker t... <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32798> | 07:11 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!