Advisories for Pypi/PyInstaller package

PyInstaller bundles a Python application and all its dependencies into a single package. A PyInstaller built application, elevated as a privileged process, may be tricked by an unprivileged attacker into deleting files the unprivileged user does not otherwise have access to. A user is affected if all the following are satisfied: 1. The user runs an application containing either matplotlib or win32com. 2. The application is ran as administrator (or …

In PyInstaller before version, only on Windows, a local privilege escalation vulnerability is present in this particular case. A software using PyInstaller in onefile mode can be launched by a privileged user (at least more than the current one) so that TempPath may become a world writable directory. This is the case for example if the software is launched as a service or as a scheduled task using a system …