FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

py-beaker -- arbitrary code execution vulnerability

Affected packages
py310-beaker <= 1.12.1
py311-beaker <= 1.12.1
py37-beaker <= 1.12.1
py38-beaker <= 1.12.1
py39-beaker <= 1.12.1

Details

VuXML ID b54abe9d-7024-4d10-98b2-180cf1717766
Discovery 2020-06-26
Entry 2023-04-10

matheusbrat reports:

The Beaker library through 1.12.1 for Python is affected by deserialization of untrusted data, which could lead to arbitrary code execution.

References

CVE Name CVE-2013-7489
URL https://osv.dev/vulnerability/PYSEC-2020-216