USN-4106-1: NLTK vulnerability
20 August 2019
NLTK could be made to overwrite files.
- nltk - Python libraries for natural language processing
Mike Salvatore discovered that NLTK mishandled crafted ZIP archives during
extraction. A remote attacker could use this vulnerability to write
arbitrary files to the filesystem
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.