Safety vulnerability ID: 41398
The information on this page was manually curated by our Cybersecurity Intelligence Team.
Urbansim 3.2 includes a security patch for the function 'from_yaml' in 'urbansim/utils/networks.py'. It used the unsafe yaml.load(), that allows instantiation of arbitrary objects. Consider yaml.safe_load().
https://github.com/UDST/urbansim/commit/44ca1d47e50fc9d6e12048329a6ff8907fbbf381
Latest version: 3.2
Platform for building statistical models of cities and regions
Urbansim version 3.2 includes a security patch for the function 'from_yaml' in 'urbansim/utils/networks.py'. Use of unsafe yaml load. Allows instantiation of arbitrary objects. Consider yaml.safe_load(). See also: https://github.com/UDST/urbansim/commit/44ca1d47e50fc9d6e12048329a6ff8907fbbf381
Scan your Python project for dependency vulnerabilities in two minutes
Scan your application