[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] CVE-2022-40604: Apache Airflow: Format String Vulnerability
From: Jedidiah Cunningham <jedcunningham () apache ! org>
Date: 2022-09-20 18:53:42
Message-ID: 276b2fdb-440f-5ed0-d9a5-6acc21202659 () apache ! org
[Download RAW message or body]
Description:
In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily =
formatted, allowing for possible information extraction.
Credit:
The Apache Airflow PMC would like to thank L3yx of Syclover Security Team =
for reporting this issue.
References:
https://github.com/apache/airflow/pull/26337
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic