|
|
Subscribe / Log in / New account

Mageia alert MGASA-2023-0211 (python-tornado)



From:
              Mageia Updates <buildsystem-daemon@mageia.org>


To:
              updates-announce@ml.mageia.org


Subject:
              [updates-announce] MGASA-2023-0211: Updated python-tornado packages fix security vulnerability


Date:
              Wed, 28 Jun 2023 07:22:45 +0200


Message-ID:
              <20230628052245.E8DCF9FB7F@duvel.mageia.org>


Archive-link:
              Article


MGASA-2023-0211 - Updated python-tornado packages fix security vulnerability

Publication date: 28 Jun 2023
URL: https://advisories.mageia.org/MGASA-2023-0211.html
Type: security
Affected Mageia releases: 8
CVE: CVE-2023-28370

Description:
Remote unauthenticated attacker may redirect a user to an arbitrary web
site and conduct a phishing attack by having user access a specially
crafted URL. (CVE-2023-28370)

References:
- https://bugs.mageia.org/show_bug.cgi?id=32033
- https://ubuntu.com/security/notices/USN-6159-1
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2...

SRPMS:
- 8/core/python-tornado-6.1-1.1.mga8
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds