100 matches found
Astra Linux – Vulnerability in sysstat
In sysstat versions up to 12.7.2, there is a multiplication integer overflow in the checkoverflow function in common.c. NOTE: This issue exists due to an incomplete fix for CVE-2022-39377...
OESA-2026-2196 python-nbconvert security update
The nbconvert tool, jupyter nbconvert, converts notebooks to various other formats via Jinja templates. The nbconvert tool allows you to convert an .ipynb notebook file into various static formats including HTML, LaTeX, PDF, Reveal JS, Markdown md, ReStructured Text rst and executable script...
CVE-2026-39377 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server, tensorflow-gpu-jupyter, tensorflow-cpu-jupyter, datahub-ingestion-fips...
CVE-2026-39377 vulnerabilities
Vulnerabilities for packages: tensorflow-cpu-jupyter, kubeflow-pipelines-visualization-server...
CLSA-2026-1776880278 sysstat: Fix of 2 CVEs
CVE-2022-39377: check an overflow and exit if it be - CVE-2023-33204: fix possible buffer overflow in an incomplete fix for CVE-2022-39377...
SUSE CVE-2026-39377
The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions 6.5 through 7.17.0 allow arbitrary file writes to locations outside the intended output directory when processing notebooks containing crafted cell attachment filenames. The...
a-mailx (=0.1.0), aepsych (>=0.3.0 <=0.4.0) +180 more potentially affected by CVE-2026-39377 via nbconvert (>=6.5.0 <=7.17.0)
nbconvert PYPI version =6.5.0, =0.3.0, =0.9.5, =0.1.0, =1.0.1, =1.0.1, =0.0.1, =1.0.0, =0.1.0, =0.0.1, =0.1.0, =0.1.0, =0.1.0, =0.1.10, =0.1.20 and more Source cves: CVE-2026-39377 Source advisory: OSV:GHSA-4C99-QJ7H-P3VG...
a-mailx (=0.1.0), almax-common (>=0.9.5 <=1.0.2.dev20240601170722) +67 more potentially affected by CVE-2026-39377 via nbconvert (>=7.0.0 <=7.17.0)
nbconvert PYPI version =7.0.0, =0.9.5, =1.0.1, =1.0.1, =0.1.0, =0.0.1, =0.1.0, =0.1.0, =0.1.10, =0.0.15, =0.1.3, =3.0.0, =0.0.1, =0.0.2 - fashiontrendforecasting =0.1.0 and more Source cves: CVE-2026-39377 Source advisory: SNYK:PYTHON-NBCONVERT-16115368...
CVE-2026-39377
The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions 6.5 through 7.17.0 allow arbitrary file writes to locations outside the intended output directory when processing notebooks containing crafted cell attachment filenames. The...
Linux Distros Unpatched Vulnerability : CVE-2026-39377
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions 6.5 through 7.17.0 allow arbitrary file...
CVE-2026-39377
creationtimestamp| type| source ---|---|--- 2026-04-20 16:16:05+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-39377 2026-04-21 02:48:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjxxuh5sm32e...
Advisory ROSA-SA-2026-3183
Software: sysstat 11.7.3 OS: ROSA Virtualization 3.0 unaffected versions = sysstat-11.7.3-13.rv30 affected versions sysstat-11.7.3-13.rv30 CVE-ID: CVE-2019-16167 BDU-ID: 2022-06244 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the remapstruct function of the sacommon.c component of the Sysstat...
MiracleLinux 8 : sysstat-11.7.3-9.el8 (AXSA:2023-5718:02)
The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5718:02 advisory. sysstat: arithmetic overflow in allocatestructures on 32 bit systems CVE-2022-39377 Tenable has extracted the preceding description block directly from the...
MiracleLinux 9 : sysstat-12.5.4-5.el9 (AXSA:2023-5796:03)
The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5796:03 advisory. sysstat: arithmetic overflow in allocatestructures on 32 bit systems CVE-2022-39377 Tenable has extracted the preceding description block directly from the...
EUVD-2023-37374
Malicious code in bioql PyPI...
TencentOS Server 3: sysstat (TSSA-2023:0106)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0106 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
Alibaba Cloud Linux 3 : 0070: sysstat (ALINUX3-SA-2023:0070)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2023:0070 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-39377: sysstat is a set of system...
CVE-2025-39377
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in weDevs Appsero Helper appsero-helper allows SQL Injection.This issue affects Appsero Helper: from n/a through = 1.3.4...
CVE-2025-39377 WordPress Appsero Helper plugin <= 1.3.4 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in weDevs Appsero Helper appsero-helper allows SQL Injection.This issue affects Appsero Helper: from n/a through = 1.3.4...
WordPress Appsero Helper plugin <= 1.3.4 - SQL Injection vulnerability
SQL Injection vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Appsero Helper versions = 1.3.4...