Homepage

pyro@3.14 vulnerabilities

distributed object middleware for Python (IPC/RPC), version 3.x

  • latest version

    3.16

  • latest non vulnerable version

    3.16

  • first published

    13 years ago

  • latest version published

    12 years ago

  • licenses detected

  • View pyro package health on Snyk Advisor  (opens in a new tab)
    • Go back to all versions of this package
    Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the pyro package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • H
    Arbitrary File Overwrite

    pyro is a Distributed Object Technology system written entirely in Python, that is designed to be very easy to use.

    Affected versions of this package are vulnerable to Arbitrary File Overwrite. It handled pid files in temporary directory locations and was opening the pid file as root. An attacker could use this flaw to overwrite arbitrary files via symlinks.

    How to fix Arbitrary File Overwrite?

    Upgrade pyro to version 3.15 or higher.

    [,3.15)
    Go back to all versions of this package