CVE-2018-1000802
published 2018-09-18CVE-2018-1000802: Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')…
PriorityP355critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
20.81%
97.2th percentile
Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | python2.7 | < python2.7 2.7.15-5 (bullseye) | python2.7 2.7.15-5 (bullseye) |
| opensuse | leap | — | — |
| python | python | >= 2.7.0 < 2.7.16 | 2.7.16 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
vendor_debian9.8CRITICAL
vendor_redhat9.8CRITICAL
vendor_ubuntu3.6LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Python vulnerabilities
vendor_ubuntu·2018-11-15·CVSS 3.6
CVE-2018-1000030 [LOW] Python vulnerabilities
Title: Python vulnerabilities
Summary: Several security issues were fixed in Python.
USN-3817-1 fixed a vulnerability in Python. This update provides
the corresponding update for Ubuntu 12.04 ESM.
Original advisory details:
It was discovered that Python incorrectly handled large amounts of data. A
remote attacker could use this issue to cause Python to crash, resulting in
a denial of service, or possibly execute arbitrary code. (CVE-2018-1000030)
It was discovered that Python incorrectly handled running external commands
in the shutil module. A remote attacker could use this issue to cause
Python to crash, resulting in a denial of service, or possibly execute
arbitrary code. (CVE-2018-1000802)
It was discovered that Python incorrectly used regular expressions
vulnerable to catastroph
Ubuntu
Python vulnerabilities
vendor_ubuntu·2018-11-13·CVSS 3.6
CVE-2018-1000030 [LOW] Python vulnerabilities
Title: Python vulnerabilities
Summary: Several security issues were fixed in Python.
It was discovered that Python incorrectly handled large amounts of data. A
remote attacker could use this issue to cause Python to crash, resulting in
a denial of service, or possibly execute arbitrary code. This issue only
affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. (CVE-2018-1000030)
It was discovered that Python incorrectly handled running external commands
in the shutil module. A remote attacker could use this issue to cause
Python to crash, resulting in a denial of service, or possibly execute
arbitrary code. (CVE-2018-1000802)
It was discovered that Python incorrectly used regular expressions
vulnerable to catastrophic backtracking. A remote attacker could possibly
use this issue to cause a d
Red Hat
python: Command injection in the shutil module
vendor_redhat·2018-08-29·CVSS 9.8
CVE-2018-1000802 [CRITICAL] CWE-77 python: Command injection in the shutil module
python: Command injection in the shutil module
Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace.
It was discovered that the shutil module of python does not properly sanitize input when creating a zip file on Windows. An attacker could use this flaw to cause a denial of service or add unintended files to the generated
Debian
CVE-2018-1000802: python2.7 - Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Impro...
vendor_debian·2018·CVSS 9.8
CVE-2018-1000802 [CRITICAL] CVE-2018-1000802: python2.7 - Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Impro...
Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace.
Scope: local
bullseye: resolved (fixed in 2.7.15-5)
GHSA
GHSA-grfr-pqc4-fqmw: Python Software Foundation Python (CPython) version 2
ghsa_unreviewed·2022-05-13
CVE-2018-1000802 [CRITICAL] CWE-77 GHSA-grfr-pqc4-fqmw: Python Software Foundation Python (CPython) version 2
Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace.
OSV
python2.7, python3.4, python3.5 vulnerabilities
osv·2018-11-13·CVSS 3.6
CVE-2018-1000030 [LOW] python2.7, python3.4, python3.5 vulnerabilities
python2.7, python3.4, python3.5 vulnerabilities
It was discovered that Python incorrectly handled large amounts of data. A
remote attacker could use this issue to cause Python to crash, resulting in
a denial of service, or possibly execute arbitrary code. This issue only
affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. (CVE-2018-1000030)
It was discovered that Python incorrectly handled running external commands
in the shutil module. A remote attacker could use this issue to cause
Python to crash, resulting in a denial of service, or possibly execute
arbitrary code. (CVE-2018-1000802)
It was discovered that Python incorrectly used regular expressions
vulnerable to catastrophic backtracking. A remote attacker could possibly
use this issue to cause a denial of service. This issue only affe
OSV
CVE-2018-1000802: Python Software Foundation Python (CPython) version 2
osv·2018-09-18·CVSS 9.8
CVE-2018-1000802 [CRITICAL] CVE-2018-1000802: Python Software Foundation Python (CPython) version 2
Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2018-1000802 python2: python: Command injection in the shutil module [fedora-all]
bugzilla·2018-09-21·CVSS 9.8
CVE-2018-1000802 [CRITICAL] CVE-2018-1000802 python2: python: Command injection in the shutil module [fedora-all]
CVE-2018-1000802 python2: python: Command injection in the shutil module [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported
Bugzilla
CVE-2018-1000802 python: Command injection in the shutil module
bugzilla·2018-09-20·CVSS 9.8
CVE-2018-1000802 [CRITICAL] CVE-2018-1000802 python: Command injection in the shutil module
CVE-2018-1000802 python: Command injection in the shutil module
A command injection vulnerability was found in the shutil module (make_archive function) of Python that can result in Denial of Service or Information leak.
Upstream issue:
https://bugs.python.org/issue34540
Upstream patch:
https://github.com/python/cpython/pull/8985/commits/add531a1e55b0a739b0f42582f1c9747e5649ace
Discussion:
Created python26 tracking bugs for this issue:
Affects: fedora-all [bug 1631421]
---
While python26 is not impacted, python2 actually is.
Here's a PR: https://src.fedoraproject.org/rpms/python2/pull-request/26
---
Created python2 tracking bugs for this issue:
Affects: fedora-all [bug 1631662]
---
Hi Miro,
Why are you saying that python2 is affected on Fedora?
I'm asking because I wasn't
Bugzilla
CVE-2018-1000802 python26: python: Command injection in the shutil module [fedora-all]
bugzilla·2018-09-20·CVSS 9.8
CVE-2018-1000802 [CRITICAL] CVE-2018-1000802 python26: python: Command injection in the shutil module [fedora-all]
CVE-2018-1000802 python26: python: Command injection in the shutil module [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported
arXiv
An Analysis of Security Vulnerabilities in Container Images for Scientific Data Analysis
arxiv_fulltext·2021-03-17
An Analysis of Security Vulnerabilities in Container Images for Scientific Data Analysis
Bhupinder Kaur, Mathieu Dugr\'e, Aiman Hanna, Tristan Glatard \ of Computer Science and Software Engineering
Concordia University
Montreal, Canada
## Abstract
Software containers greatly facilitate the deployment and reproducibility
of scientific data analyses in various platforms. However,
container images often contain outdated or unnecessary software packages,
which increases the number of security vulnerabilities in the images,
widens the attack surface in the container host, and creates
substantial security risks for computing infrastructures at large. This paper
presents a vulnerability analysis of container images for scientific data
analysis. We compare results obtained with four vulnerability scanners,
focusing on the use case of neuroscience data analysis, and quantifying the
e
arXiv
Blindspots in Python and Java APIs Result in Vulnerable Code
arxiv_fulltext·2021-03-10
Blindspots in Python and Java APIs Result in Vulnerable Code
Wil-co-xon Trp-Auto-Re-pair
Yuriy Brun,
Tian Lin,
Jessie Elise Somerville,
Elisha Myers,
Natalie C. Ebner
Y. Brun is with the College of Information and
Computer Sciences at the University of Massachusetts Amherst, Amherst, Massachusetts
01003-9264. Email: [email protected]
E. Myers is with the Charles E.\ Schmidt College of
Medicine at the Florida Atlantic University, Boca Raton, Florida, 33431.
Email: [email protected]
T. Lin, J. E. Somerville, and N. Ebner are with the Department of
Psychology at the University of Florida, Gainesville, Florida 32611-2250.
Email: [email protected], [email protected], [email protected]
Brun et al.: Blindspots in Python and Java APIs Result in Vulnerable Code
Brun et al.: Blindspots in Python and Java APIs Result in Vulnerable Cod
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.htmlhttps://bugs.python.org/issue34540https://github.com/python/cpython/pull/8985https://github.com/python/cpython/pull/8985/commits/add531a1e55b0a739b0f42582f1c9747e5649acehttps://lists.debian.org/debian-lts-announce/2018/09/msg00030.htmlhttps://lists.debian.org/debian-lts-announce/2018/09/msg00031.htmlhttps://mega.nz/#%21JUFiCC4R%21mq-jQ8ySFwIhX6WMDujaZuNBfttDVt7DETlfOIQE1ighttps://security.netapp.com/advisory/ntap-20230309-0002/https://usn.ubuntu.com/3817-1/https://usn.ubuntu.com/3817-2/https://www.debian.org/security/2018/dsa-4306http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.htmlhttps://bugs.python.org/issue34540https://github.com/python/cpython/pull/8985https://github.com/python/cpython/pull/8985/commits/add531a1e55b0a739b0f42582f1c9747e5649acehttps://lists.debian.org/debian-lts-announce/2018/09/msg00030.htmlhttps://lists.debian.org/debian-lts-announce/2018/09/msg00031.htmlhttps://mega.nz/#%21JUFiCC4R%21mq-jQ8ySFwIhX6WMDujaZuNBfttDVt7DETlfOIQE1ighttps://security.netapp.com/advisory/ntap-20230309-0002/https://usn.ubuntu.com/3817-1/https://usn.ubuntu.com/3817-2/https://www.debian.org/security/2018/dsa-4306
2018-09-18
Published