Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:24816
HistorySep 30, 2010 - 12:00 a.m.

[USN-996-1] Mako vulnerability

2010-09-3000:00:00
vulners.com
22
JSON

===========================================================
Ubuntu Security Notice USN-996-1 September 29, 2010
mako vulnerability
CVE-2010-2480

A security issue affects the following Ubuntu releases:

Ubuntu 10.04 LTS

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 10.04 LTS:
python-mako 0.2.5-2ubuntu1.3

In general, a standard system update will make all the necessary changes.

Details follow:

It was discovered that Mako incorrectly filtered single-quote characters
when performing html filtering. An attacker could utilize this to perform
cross-site scripting attacks.

Updated packages for Ubuntu 10.04:

Source archives:

http://security.ubuntu.com/ubuntu/pool/main/m/mako/mako_0.2.5-2ubuntu1.3.diff.gz
  Size/MD5:     5622 9cc948447247736d5d37f2ada66f2e59
http://security.ubuntu.com/ubuntu/pool/main/m/mako/mako_0.2.5-2ubuntu1.3.dsc
  Size/MD5:     1452 fd281df3c78bc4ca4fb2f1a96a5cf9c9
http://security.ubuntu.com/ubuntu/pool/main/m/mako/mako_0.2.5.orig.tar.gz
  Size/MD5:   228192 d8ca783630dc5e93970a2075532fa643

Architecture independent packages:

http://security.ubuntu.com/ubuntu/pool/main/m/mako/python-mako_0.2.5-2ubuntu1.3_all.deb
  Size/MD5:   100918 0df79d97dbd23990c0bb3dbd85e8c5f0

Related

nessus 3
debiancve 1
osv 2
openvas 4
ubuntu 1
cve 1
securityvulns 1
altlinux 1
prion 1
ubuntucve 1
github 1
nessus
nessus
openSUSE Security Update : python-mako (openSUSE-SU-2010:0383-1)
2014-06-13 00:00:00
Ubuntu 10.04 LTS : mako vulnerability (USN-996-1)
2010-10-06 00:00:00
openSUSE Security Update : python-mako (openSUSE-SU-2010:0383-1)
2010-07-19 00:00:00
debiancve
debiancve
CVE-2010-2480
2010-07-02 19:00:00
osv
osv
PYSEC-2010-1
2010-07-02 19:00:00
Mako contains Cross-site Scripting vulnerability
2022-05-17 05:48:31
openvas
openvas
Ubuntu: Security Advisory (USN-996-1)
2010-10-01 00:00:00
Mako 'cgi.escape()' Cross-Site Scripting Vulnerability
2010-07-16 00:00:00
Ubuntu Update for mako vulnerability USN-996-1
2010-10-01 00:00:00
ubuntu
ubuntu
Mako vulnerability
2010-09-29 00:00:00
cve
cve
CVE-2010-2480
2010-07-02 19:00:00
securityvulns
securityvulns
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2010-09-30 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package python-module-mako version 0.2.5-alt1.M51.1
2010-10-02 00:00:00
prion
prion
Cross site scripting
2010-07-02 19:00:00
ubuntucve
ubuntucve
CVE-2010-2480
2010-07-02 00:00:00
github
github
Mako contains Cross-site Scripting vulnerability
2022-05-17 05:48:31
JSON
Related for SECURITYVULNS:DOC:24816
nessus3debiancve1osv2openvas4ubuntu1cve1securityvulns1altlinux1prion1ubuntucve1github1