Jupyter Notebook 5.7.1 - security release

[Thomas Kluyver]

Hi all,

I released notebook 5.7.1 yesterday; it should be available from PyPI and conda-forge now.

The only change in this release is a security fix. An oversight in earlier versions meant that using the 'print preview' feature on a malicious notebook could allow it to run untrusted Javascript in the notebook server context. This potentially means it could start a kernel and run code on your computer.

It's recommended to upgrade as soon as practical.

Thanks,

Thomas

[Pietro Terna]

    Help, all the versions, but 1.0.0, seem to be disappeared ... (or I'm doing some stupid thing ...).

    Best, Pietro

Il 17/11/18 12:30, Thomas Kluyver ha scritto:

--
You received this message because you are subscribed to the Google Groups "Project Jupyter" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jupyter+u...@googlegroups.com.
To post to this group, send email to jup...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/jupyter/CAOvn4qinXHANjNNDZFDTMbAwKWOWCRnKcLW3gF3YMpwGWeDXFQ%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.

-- 
The world is full of interesting problems to be solved!

Home page: https://terna.to.it

Have a look to: 
http://web-prod.santafe.edu/news-center/news/dangers-simplicity-complex-world

[Thomas Kluyver]

Hi Pietro,

The package is called *notebook* in both pip and conda. I think you're looking at the jupyter package, which is an empty metapackage that depends on all the other packages that make up jupyter.

Thomas

To view this discussion on the web visit https://groups.google.com/d/msgid/jupyter/c6e3e19c-40ad-05ed-67d2-83239fa71e61%40unito.it.