MGASA-2023-0062 - Updated jupyter-core packages fix security vulnerability

Publication date: 27 Feb 2023
URL: https://advisories.mageia.org/MGASA-2023-0062.html
Type: security
Affected Mageia releases: 8
CVE: CVE-2022-39286

Arbitrary code execution when loading configuration files (CVE-2022-39286)

References:
- https://bugs.mageia.org/show_bug.cgi?id=31156
- https://www.debian.org/lts/security/2022/dla-3195
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/YIDN7JMLK6AOMBQI4QPSW4MBQGWQ5NIN/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39286

SRPMS:
- 8/core/jupyter-core-4.7.0-1.1.mga8