663 matches found
EUVD-2026-19346
Lupa has a Sandbox escape and RCE due to incomplete attributefilter enforcement in getattr / setattr...
DEBIAN-CVE-2026-34444
Lupa integrates the runtimes of Lua or LuaJIT2 into CPython. In 2.6 and earlier, attributefilter is not consistently applied when attributes are accessed through built-in functions like getattr and setattr. This allows an attacker to bypass the intended restrictions and eventually achieve arbitra...
CVE-2026-34444
Lupa integrates the runtimes of Lua or LuaJIT2 into CPython. In 2.6 and earlier, attributefilter is not consistently applied when attributes are accessed through built-in functions like getattr and setattr. This allows an attacker to bypass the intended restrictions and eventually achieve arbitra...
CVE-2026-34444
Lupa integrates the runtimes of Lua or LuaJIT2 into CPython. In 2.6 and earlier, attributefilter is not consistently applied when attributes are accessed through built-in functions like getattr and setattr. This allows an attacker to bypass the intended restrictions and eventually achieve arbitra...
[SECURITY] Fedora 42 Update: maturin-1.9.6-4.fc42
Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...
[SECURITY] Fedora 43 Update: maturin-1.9.6-5.fc43
Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...
[SECURITY] Fedora 44 Update: maturin-1.9.6-5.fc44
Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...
python3.12 security update
An update is available for python3.12. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming...
CPython 安全漏洞
CPython is a Python interpreter implemented in C language by the Python Foundation. CPython has security vulnerabilities, which stem from unvalidated resource parameters, potentially leading to path traversal attacks...
CPython 安全漏洞
CPython is a Python interpreter implemented in C language by the Python Foundation. CPython has a security vulnerability, which stems from the incomplete repair of control characters in the http.cookies.Morsel module. This vulnerability may allow control characters to bypass input validation...
CPython 安全漏洞
CPython is a Python interpreter implemented in C language by the Python Foundation. CPython has a security vulnerability that stems from improper DIRTYPE normalization when applying AREGTYPE block handling for multiple member blocks. This vulnerability may lead to the incorrect interpretation of...
MiracleLinux 9 : python3.11-3.11.13-5.1.el9_7 (AXSA:2026-297:05)
The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-297:05 advisory. cpython: IMAP command injection in user-controlled commands CVE-2025-15366 cpython: POP3 command injection in user-controlled commands CVE-2025-15367...
RHEL 9 : python3.12 (RHSA-2026:3900)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:3900 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...
AZL-79491 CVE-2026-2297 affecting package tensorflow 2.16.1-11
The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...
CVE-2026-2297
The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...
PSF-2026-9
The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...
CVE-2026-2297
The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...
OESA-2026-1460 python3 security update
Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...
cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service
A flaw was found in cpython. This vulnerability allows impacted availability via a quadratic algorithm in xml.dom.minidom methods, such as appendChild, when building excessively nested documents due to a dependency on clearidcache...
[SECURITY] Fedora 42 Update: maturin-1.9.6-3.fc42
Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...