Ausnahme gefangen: SSL certificate problem: certificate is not yet valid ๐Ÿ“Œ Pythonโ€™s Tarfile path traversal bug from 2007 still present in 350k open source repos
Team IT Security Nachrichtenportal Logo

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security
RSS Feed Symbol fรผr Team IT Security 800+ IT News als RSS Feed abonnieren



๐Ÿ“š Pythonโ€™s Tarfile path traversal bug from 2007 still present in 350k open source repos


๐Ÿ’ก Newskategorie: Hacking
๐Ÿ”— Quelle: blackhatethicalhacking.com

Reading Time: 3 minutes

The post Pythonโ€™s Tarfile path traversal bug from 2007 still present in 350k open source repos first appeared on Black Hat Ethical Hacking. ...



Sharing is caring on Social Media

๐Ÿ”— Reddit
๐Ÿ”— Telegram
๐Ÿ”— LinkedIn
๐Ÿ”— Xing
๐Ÿ”— Twitter
๐Ÿ”— Whatsapp
๐Ÿ”— Facebook
๐Ÿ”— Flipboard

Join the Team IT Security Community

๐Ÿ”— "IT Sicherheit" Reddit-Gruppe
๐Ÿ”— "IT Sicherheit" Telegramm-Seite

๐Ÿ“Œ Pythonโ€™s Tarfile path traversal bug from 2007 still present in 350k open source repos


๐Ÿ“ˆ 141.28 Punkte

๐Ÿ“Œ Python tarfile vulnerability affects 350,000 open-source projects (CVE-2007-4559)


๐Ÿ“ˆ 55.56 Punkte

๐Ÿ“Œ 15-Year-Old Python Bug Let Hacker Execute Code in 350k Python Projects


๐Ÿ“ˆ 45.48 Punkte

๐Ÿ“Œ Unpatched 15-year old Python bug allows code execution in 350k projects


๐Ÿ“ˆ 38.97 Punkte

๐Ÿ“Œ 350K Open-Source Projects At Risk of Supply Chain Vulnerability


๐Ÿ“ˆ 37.23 Punkte

๐Ÿ“Œ Trellix Launches Advanced Research Center, Finds Estimated 350K Open-Source Projects at Risk to Supply Chain Vulnerability


๐Ÿ“ˆ 37.23 Punkte

๐Ÿ“Œ Python up to 3.8.3 TAR Archive Lib/tarfile.py _proc_pax infinite loop


๐Ÿ“ˆ 36.38 Punkte

๐Ÿ“Œ Alert: 15-year-old Python tarfile flaw lurks in 'over 350,000' code projects


๐Ÿ“ˆ 36.38 Punkte

๐Ÿ“Œ Serious Exchange Flaw Still Plagues 350K Servers


๐Ÿ“ˆ 34.72 Punkte

๐Ÿ“Œ Repos not present


๐Ÿ“ˆ 32.53 Punkte

๐Ÿ“Œ Open Source is More Secure than Closed Source because Closed Source is More Secure than Open Source


๐Ÿ“ˆ 31.38 Punkte

๐Ÿ“Œ In 2019, multiple open source companies changed courseโ€”is it the right move? "We have to draw a line between open source and the right to make money with open source."


๐Ÿ“ˆ 30.52 Punkte

๐Ÿ“Œ The EU Open Source Policy Summit 2023 starts in few minutes and is a day-long event where policy-makers and Open Source communities explore together Europeโ€™s opportunities for leveraging Open Source. Registration is free and you can attend online.


๐Ÿ“ˆ 30.52 Punkte

๐Ÿ“Œ Ushering In a New Era for Open-Source Silicon Development (CEO of lowrisc , a non profit that develops open source hardware on why open source hardware failed in the past, and how lowrisc does things differently)


๐Ÿ“ˆ 30.52 Punkte

๐Ÿ“Œ Security: Lรผcke in Pythons Tarfile-Modul betrifft 350.000 Projekte


๐Ÿ“ˆ 29.86 Punkte

๐Ÿ“Œ Security: Lรผcke in Pythons Tarfile-Modul betrifft 350.000 Projekte - Golem.de


๐Ÿ“ˆ 29.86 Punkte

๐Ÿ“Œ Massive threat campaign strikes open-source repos, Sonatype spots new CursedGrabber malware


๐Ÿ“ˆ 27.79 Punkte

๐Ÿ“Œ Open Source: Gut getarnte Malware-Kampagne in Tausenden Github Repos


๐Ÿ“ˆ 27.79 Punkte

๐Ÿ“Œ ๐Ÿ”ฅ 9 Open-Source Repos That Will Make Your SaaS Gold ๐Ÿค”


๐Ÿ“ˆ 27.79 Punkte

๐Ÿ“Œ ๐Ÿ“ˆ Top 7 open source repos on GitHub [October edition]๐Ÿš€โœจ


๐Ÿ“ˆ 27.79 Punkte

๐Ÿ“Œ Amazon Spends $350K On Seattle Mayor's Race


๐Ÿ“ˆ 27.06 Punkte

๐Ÿ“Œ 2 Million Emails of 350K+ Clients Possibly Exposed in Oregon DHS Data Breach


๐Ÿ“ˆ 27.06 Punkte

๐Ÿ“Œ 350k Fresh HQ Combo Email-Pass SQL shopping


๐Ÿ“ˆ 27.06 Punkte

๐Ÿ“Œ 350k Private Combo Email Good For (Streaming,Gaming,Shoping) |


๐Ÿ“ˆ 27.06 Punkte

๐Ÿ“Œ Hackers Earn $350k on Second Day at Pwn2Own Toronto 2023


๐Ÿ“ˆ 27.06 Punkte

๐Ÿ“Œ Mehrere Probleme in ardana-neutron, ardana-swift, cassandra, crowbar-openstack, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, ruby


๐Ÿ“ˆ 26.07 Punkte

๐Ÿ“Œ Turning another one of my old slam poems about chronic pain into a song, all from bed. Still using the same microphone/recorder I've had since I was 8, still rocking the free and open-source Ubuntu Studio for all my artistic needs.


๐Ÿ“ˆ 25.5 Punkte

๐Ÿ“Œ Internet Bug Bounty: Path traversal through path stored in Uint8Array in Node.js 20


๐Ÿ“ˆ 25.39 Punkte

๐Ÿ“Œ "Why don't you like Fedora?" - well here's one reason. Over-reliance on third-party repos for basic shit like Mesa VAAPI drivers, and they *still* can't package them correctly.


๐Ÿ“ˆ 25.28 Punkte

๐Ÿ“Œ DARPA to Present Open-Source, Secure Voting System at DEF CON 2019


๐Ÿ“ˆ 25.08 Punkte

๐Ÿ“Œ Open Source Vulnerabilities database: Nice idea but too many Google-shaped hoops to jump through at present


๐Ÿ“ˆ 25.08 Punkte

๐Ÿ“Œ Grassroots Open Science MOOC launched, with pilot Module on Open Research Software and Open Source. All free, all re-usable content. Vive la open revolution!


๐Ÿ“ˆ 24.14 Punkte

๐Ÿ“Œ โšก๏ธโšก๏ธ 7 ML Repos used by the TOP 1% of Python developers [based on REAL data] ๐Ÿ‰


๐Ÿ“ˆ 24.14 Punkte

๐Ÿ“Œ ๐Ÿ 8 backend repos used by the top 1% of python devs ๐Ÿ†


๐Ÿ“ˆ 24.14 Punkte

๐Ÿ“Œ [webapps] Oracle GlassFish Server Open Source Edition 4.1 - Path Traversal (Metasploit)


๐Ÿ“ˆ 23.26 Punkte











matomo

Kontakt

24/7 kontakt@tsecurity.de

Weitere Informationen

Google Android Playstore Download Button fรผr Team IT Security
๐Ÿ”— Impressum
๐Ÿ”— Datenschutz
Paypal Spenden fรผr Projekt

Social Media

๐Ÿ”— Facebook
๐Ÿ”— Reddit
๐Ÿ”— Team IT Security als Elektron App
๐Ÿ”— © 2015-2023 Team IT Security Nachrichtenportal รผber Cybersecurity
๐Ÿ”— CMS "myDraft" a PHP Portal Software