Updated ipython packages fix CVE-2015-6938
Publication date: 15 Sep 2015Modification date: 15 Sep 2015
Type: security
Affected Mageia releases : 4 , 5
CVE: CVE-2015-6938
Description
Updated ipython packages fix security vulnerability: In IPython, local folder name was used in HTML templates without escaping, allowing XSS in said pages by carefully crafting folder name and URL to access it (CVE-2015-6938).
References
SRPMS
5/core
- ipython-2.3.0-2.3.mga5
4/core
- ipython-2.3.0-1.2.mga4