Ubuntu
ipython package

  1. Precise (12.04)
  2. Bug #1344854
  3. Comment #0

Comment 0 for bug 1344854

Revision history for this message
Julian Taylor (jtaylor) wrote :

ipython 0.12 in precise is affected by CVE-2014-3429 which allows remote execution of code if one has knowledge of the kernel id (uuid)

See this page for details of the issue:
http://lambdaops.com/cross-origin-websocket-hijacking-of-ipython