Jupyter Notebook before version 6.1.5 has an Open redirect vulnerability. A maliciously crafted link to a notebook server could redirect the browser to a different website. All notebook servers are technically affected, however, these maliciously crafted links can only be reasonably made for known notebook server hosts. A link to your notebook server may appear safe, but ultimately redirect to a spoofed server on the public internet. The issue is patched in version 6.1.5.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "5.2.2-1ubuntu0.1", "binary_name": "jupyter-notebook" }, { "binary_version": "5.2.2-1ubuntu0.1", "binary_name": "python-notebook" }, { "binary_version": "5.2.2-1ubuntu0.1", "binary_name": "python-notebook-doc" }, { "binary_version": "5.2.2-1ubuntu0.1", "binary_name": "python3-notebook" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "6.0.3-2ubuntu0.1", "binary_name": "jupyter-notebook" }, { "binary_version": "6.0.3-2ubuntu0.1", "binary_name": "python-notebook-doc" }, { "binary_version": "6.0.3-2ubuntu0.1", "binary_name": "python3-notebook" } ] }