Python Package: confire
Version: Before 0.2.0
Published: Nov. 10th. 2017
Reported by: Joel
Confire is a simple but powerful configuration scheme that builds on the configuration parsers of Scapy, elasticsearch, Django and others. Due to the user specific configuration was loaded from
yaml.load(), an issue was discovered in the
Confire package before
0.2.0.Untrusted data passed into the
confire.yaml files can execute arbitrary python commands resulting in command execution.
1 2 3 4 5 6 7 8 9 10 11 12
The updated versions of
confire correctly use the
yaml.safe_load method which prevents remote code execution.