python-babel - Arch Linux
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-1894 | 2.9.0-1 | 2.9.1-1 | Medium | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2021-20095 | AVG-1894 | Medium | No | Arbitrary code execution | Relative Path Traversal in Babel 2.9.0 allows an attacker to load arbitrary locale files on disk and execute arbitrary code. |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 19 May 2021 | ASA-202105-15 | AVG-1894 | Medium | arbitrary code execution |