SUSE Package Hub - openSUSE-2024-232

Update Info

openSUSE-2024-232

Security update for python-notebook

Type: security

Severity: moderate

Issued: 2024-08-02

Description:

This update for python-notebook fixes the following issues:

- Update to 5.7.11
  * sanitizer fix CVE-2021-32798 (boo#1227583)
- Update to 5.7.10
  * no upstream changelog
- Update to 5.7.9
  * Update JQuery dependency to version 3.4.1 to fix security
    vulnerability (CVE-2019-11358)
  * Update from preact to React

References

CVE: CVE-2021-32798
CVE: CVE-2019-11358
Bugzilla: 1227583 VUL-0: CVE-2021-32798: python-notebook: The Jupyter notebook is a web-based notebook environment for interactive computing. In affected versions untrusted notebook can execute code on load. Jupyter Notebook uses a deprecated version of Google Caja to ...

Packages

python-notebook-5.7.11-bp155.3.3.1