Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the bson module. Using the crafted payload the attacker could force the parser to deserialize unmanaged memory. The parser tries to interpret bytes next to buffer and throws an exception with string. If the followi...

2023-assignement-devops (=2.0.0), 2023-assignment-devops (>=1.0.0 <=1.0.1) +4416 more potentially affected by CVE-2024-5629 via pymongo (>=4.0.0 <=4.6.2)

pymongo PYPI version =4.0.0, =1.0.0, =1.0.0, =0.1.0, =0.1.0, =0.2.0, =0.0.1, =0.4.0, =0.3.13, =0.1.0, =0.1.0, =0.1.0, =0.5.0 and more Source cves: CVE-2024-5629 Source advisory: SNYK:PYTHON-PYMONGO-7172112...

GHSA-X33V-F3GP-GW2C Use of NullPointerException Catch to Detect NULL Pointer Dereference in Pymongo

bson/cbsonmodule.c in the mongo-python-driver aka. pymongo before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service NULL pointer dereference and crash via vectors related to decoding of an "invalid DBRef."...

Use of NullPointerException Catch to Detect NULL Pointer Dereference in Pymongo

bson/cbsonmodule.c in the mongo-python-driver aka. pymongo before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service NULL pointer dereference and crash via vectors related to decoding of an "invalid DBRef."...

quokka (>=0.0.1.dev84 <=0.4.1.dev22) potentially affected by CVE-2013-2132 via pymongo (=2.4.1)

pymongo PYPI version =2.4.1 is affected by a known vulnerability. The following packages have a transitive dependency on pymongo and may be impacted: - quokka =0.0.1.dev84, =0.4.1.dev22 Source cves: CVE-2013-2132 Source advisory: OSV:GHSA-X33V-F3GP-GW2C...

Mageia: Security Advisory (MGASA-2013-0201)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

python27:2.7 security, bug fix, and enhancement update

An update is available for python-pymongo, python2-rpm-macros, python-docutils, pytest, python-psycopg2, python-PyMySQL, python-lxml, PyYAML, python-pytest-mock, python-attrs, python-jinja2, python-docs, python-requests, python-mock, python-ipaddress, python-funcsigs, python-py, python-chardet,...

python36:3.6 bug fix and enhancement update

An update is available for python-pymongo, python-docutils, python-pygments, python-PyMySQL, python-docs, python36, python-virtualenv, python-distro, python-nose, python-wheel, scipy. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

python27:2.7 security update

Cython 0.28.1-7 - Bumping due to problems with modular RPM upgrade path 1695587 - Related: rhbz1693974 PyYAML 3.12-16 - Bumping due to problems with modular RPM upgrade path 1695587 - Related: rhbz1693974 babel 2.5.1-9 - Bumping due to problems with modular RPM upgrade path 1695587 - Related:...

python36:3.6 security update

python-PyMySQL 0.8.0-10 - Bumping due to problems with modular RPM upgrade path 1695587 - Related: rhbz1693974 python-docs 3.6.7-2 - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz1695587 python-docutils 0.14-12 - Bumping due to problems with modular RPM upgrade path 169558...

REST API Penetration Testing: Astra

REST API penetration testing is complex due to continuous changes in existing APIs and newly added APIs. Astra can be used by security engineers or developers as an integral part of their process, so they can detect and patch vulnerabilities early during development cycle. Astra can automatically...

Moderate: Red Hat Security Advisory: python27 security, bug fix, and enhancement update

Updated python27 packages are now available as a part of Red Hat Software Collections 2.2 for Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Fedora 22 : python-pymongo-2.5.2-8.fc22 (2016-52b294538d)

Security fix for CVE-2013-2099, CVE-2013-7440 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Fedora 23 : python-pymongo-2.5.2-8.fc23 (2016-50abc3e885)

Security fix for CVE-2013-2099, CVE-2013-7440 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Fedora Update for python-pymongo FEDORA-2016-50

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for python-pymongo FEDORA-2016-52

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 22 Update: python-pymongo-2.5.2-8.fc22

The Python driver for MongoDB...

Python Network Recon Framework: ivre

IVRE Instrument de veille sur les réseaux extérieurs or DRUNK Dynamic Recon of UNKnown networks is a network recon framework, including two modules for passive recon one p0f -based and one Bro -based and one module for active recon mostly Nmap -based, with a bit of ZMap . External programs /...

RHEL 6 : mongodb and pymongo (RHSA-2013:1170)

Updated mongodb and pymongo packages that fix two security issues and add one enhancement are now available for Red Hat Enterprise MRG 2.3 for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring...

openSUSE Security Update : python-pymongo / python3-pymongo (openSUSE-SU-2013:1064-1)

This update of pymongo fixes a NULL pointer issue. - Add Fix-null-pointer-when-decoding-invalid-DBRef.patch - Fixed user-triggerable NULL pointer dereference due to utter plebbery CVE-2013-2132, bnc822798 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks...