python-reportlab

Link	package \| bugs open \| bugs closed \| Wiki \| GitHub \| web search
Description	A proven industry-strength PDF generating solution
Version	3.6.12-1 [community]

Resolved

Group	Affected	Fixed	Severity	Status	Ticket
AVG-1592	3.5.54-1	3.5.55-1	Medium	Fixed

Issue	Group	Severity	Remote	Type	Description
CVE-2020-28463	AVG-1592	Medium	Yes	Url request injection	All versions of package python-reportlab are vulnerable to Server-side Request Forgery (SSRF) via img tags. In order to reduce risk, use trustedSchemes &...