Debian Security Advisory

DLA-369-1 pygments -- LTS security update

Date Reported:
15 Dec 2015
Affected Packages:
pygments
Vulnerable:
Yes
Security database references:
In the Debian bugtracking system: Bug 802828.
In Mitre's CVE dictionary: CVE-2015-8557.
More information:

It was discovered that there was a shell injection vulnerability in pygments, a syntax highlighting package written in Python.

For Debian 6 Squeeze, this issue has been fixed in pygments version 1.3.1+dfsg-1+deb6u11.