Candidate: CVE-2015-7337
PublicDate: 2015-09-29 19:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7337
 http://www.openwall.com/lists/oss-security/2015/09/16/3
Description:
 The editor in IPython Notebook before 3.2.2 and Jupyter Notebook 4.0.x
 before 4.0.5 allows remote attackers to execute arbitrary JavaScript code
 via a crafted file, which triggers a redirect to files/, related to MIME
 types.
Ubuntu-Description:
Notes:
 msalvatore> affects ipython 3.0 - 3.2.1
Bugs:
Priority: medium
Discovered-by: Jonathan Kamens
Assigned-to:
CVSS: 

Patches_ipython:
 upstream: https://github.com/ipython/ipython/commit/0a8096adf165e2465550bd5893d7e352544e5967
upstream_ipython: pending (4.0.5, 4.1 or 3.2.2)
precise_ipython: ignored (reached end-of-life)
precise/esm_ipython: DNE (precise was needed)
trusty_ipython: not-affected (code not present)
trusty/esm_ipython: not-affected (code not present)
vivid_ipython: ignored (reached end-of-life)
vivid/stable-phone-overlay_ipython: DNE
vivid/ubuntu-core_ipython: DNE
wily_ipython: ignored (reached end-of-life)
xenial_ipython: not-affected (code not present)
yakkety_ipython: ignored (reached end-of-life)
zesty_ipython: ignored (reached end-of-life)
artful_ipython: ignored (reached end-of-life)
bionic_ipython: not-affected (5.5.0-1)
devel_ipython: not-affected (5.5.0-1)