Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2021-42771

Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (containing serialized Python objects) via directory traversal, leading to code execution. (CVE-2021-42771)

Source

ALAS2-2023-2010

Amazon Linux 2 Security Advisory: ALAS-2023-2010
Advisory Release Date: 2023-03-30 18:56 Pacific
Advisory Updated Date: 2023-04-04 22:10 Pacific

Severity: Medium

References: CVE-2021-42771
FAQs regarding Amazon Linux ALAS/CVE Severity

Issue Overview:

Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (containing serialized Python objects) via directory traversal, leading to code execution. (CVE-2021-42771)

Affected Packages:

babel

Issue Correction:
Run yum update babel to update your system.

New Packages:

noarch:
    babel-0.9.6-8.amzn2.0.2.noarch
    python-babel-0.9.6-8.amzn2.0.2.noarch

src:
    babel-0.9.6-8.amzn2.0.2.src

Additional References

Red Hat: CVE-2021-42771

Mitre: CVE-2021-42771

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

ALAS2-2023-2010

ALAS2-2023-2010

Additional References

Vulmon Search

About

Products

Connect