Vulnerability CVE-2015-6938

Vulnerability CVE-2015-6938

Published: 2015-09-21

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166460.html

http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166471.html

http://lists.fedoraproject.org/pipermail/package-announce/2015-September/167670.html

http://lists.opensuse.org/opensuse-updates/2015-10/msg00016.html

http://seclists.org/oss-sec/2015/q3/474

http://seclists.org/oss-sec/2015/q3/544

https://bugzilla.redhat.com/show_bug.cgi?id=1259405

https://github.com/ipython/ipython/commit/3ab41641cf6fce3860c73d5cf4645aa12e1e5892

https://github.com/jupyter/notebook/commit/35f32dd2da804d108a3a3585b69ec3295b2677ed

https://github.com/jupyter/notebook/commit/dd9876381f0ef09873d8c5f6f2063269172331e3