3 matches found
openSUSE 16 Security Update : python-uv (openSUSE-SU-2026:20330-1)
The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20330-1 advisory. This update for python-uv fixes the following issue: - CVE-2025-13327: parsing differentials when processing specially crafted ZIP archives during packa...
CVE-2025-13327
creationtimestamp| type| source ---|---|--- 2026-02-27 09:26:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mftfe4izlk2v...
CVE-2025-13327
A flaw was found in uv. This vulnerability allows an attacker to execute malicious code during package resolution or installation via specially crafted ZIP Zipped Information Package archives that exploit parsing differentials, requiring user interaction to install an attacker-controlled package...