aglvq (=1.0.0), beacon-trellis (=0.1.0) +64 more potentially affected by CVE-2020-15205 via tensorflow (=2.1.0)

tensorflow PYPI version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - aglvq =1.0.0 - beacon-trellis =0.1.0 - biobb-ml =3.0.0, =0.0.1, =0.2.0, =0.0.2, =0.1.0, =1.1.0, =0.2.0rc1, =0.2.0rc3 and more Source cves:...

abba-python (>=0.1.6 <=0.3.0), adpred (>=1.1.2 <=1.2.7) +233 more potentially affected by CVE-2020-15194 via tensorflow (>=1.0.1 <=1.15.3)

tensorflow PYPI version =1.0.1, =0.1.6, =1.1.2, =0.0.1, =0.3.26, =0.2.0, =0.4.2, =0.1.1, =0.1.5 - autobazaar =0.1.0 - autogan =0.0.5 - automationobjectdetection-sandeepjena7 =0.0.1 - automl-lib =0.0.1 and more Source cves: CVE-2020-15194 Source advisory: OSV:GHSA-9MQP-7V2H-2382...

3di-cmd-client (>=0.0.1a0 <=0.0.3), abracadabra (>=0.0.0 <=0.0.5) +737 more potentially affected by CVE-2020-28493 via jinja2 (>=2.10.0 <=2.11.2)

jinja2 PYPI version =2.10.0, =0.0.1a0, =0.0.0, =0.4.0, =0.0.1, =1.0.0a4, =0.0.3, =1.0.0, =0.1.0, =2022.9.19, =0.2.0, =0.5.1, =0.2.0, =1.0.0, =1.1.0 and more Source cves: CVE-2020-28493 Source advisory: SNYK:PYTHON-JINJA2-1012994...

aws-lambda-sls (=0.1.0), backlogprocessing (>=0.0.0 <=0.0.2) +33 more potentially affected by CVE-2019-20916 via pip (>=10.0.0b2 <=19.1.1)

pip PYPI version =10.0.0b2, =0.0.0, =1.2.3, =3.4.13, =2.3.0.18070322, =2.3.0.18072813, =2.3.0.18073020, =0.1.6, =0.0.37, =1.0.1, =2.3.0.18073018, =2.3.0.18070609, =2.3.0.18070422, =2.3.3.19062118 and more Source cves: CVE-2019-20916 Source advisory: OSV:PYSEC-2020-173...

ag-llama-api (>=0.0.1 <=0.0.31), ag-llama-api-s (>=0.0.4 <=0.0.12) +403 more potentially affected by CVE-2020-25032 via flask-cors (>=1.1.2 <=3.0.8)

flask-cors PYPI version =1.1.2, =0.0.1, =0.0.4, =0.0.13, =1.0.2, =2.5.0, =2.5.0, =0.1.0b2696.post0.dev1, =0.1.8, =0.0.1, =1.0.2, =0.4.0, =0.1.0, =1.0.1, =0.14.0, =0.15.3 - amundsen-databuilder =5.1.0 and more Source cves: CVE-2020-25032 Source advisory: OSV:PYSEC-2020-43...

aiida-graphql (>=0.0.1 <=0.0.2), annhub-python (>=0.1.5 <=0.1.6) +31 more potentially affected by CVE-2020-7695 via uvicorn (>=0.10.0 <=0.11.5)

uvicorn PYPI version =0.10.0, =0.0.1, =0.1.5, =1.0.0, =22.70.0, =0.31.0, =0.0.14, =0.8.0, =2.0.0, =1.0.0a1, =0.0.2, =0.0.1a0, =0.0.1a1 and more Source cves: CVE-2020-7695 Source advisory: OSV:PYSEC-2020-151...

aiida-graphql (>=0.0.1 <=0.0.2), annhub-python (>=0.1.5 <=0.1.6) +31 more potentially affected by CVE-2020-7694 via uvicorn (>=0.10.0 <=0.11.5)

uvicorn PYPI version =0.10.0, =0.0.1, =0.1.5, =1.0.0, =22.70.0, =0.31.0, =0.0.14, =0.8.0, =2.0.0, =1.0.0a1, =0.0.2, =0.0.1a0, =0.0.1a1 and more Source cves: CVE-2020-7694 Source advisory: OSV:PYSEC-2020-150...

aiida-graphql (>=0.0.1 <=0.0.2), annhub-python (>=0.1.5 <=0.1.6) +31 more potentially affected by CVE-2020-7695 via uvicorn (>=0.10.0 <=0.11.5)

uvicorn PYPI version =0.10.0, =0.0.1, =0.1.5, =1.0.0, =22.70.0, =0.31.0, =0.0.14, =0.8.0, =2.0.0, =1.0.0a1, =0.0.2, =0.0.1a0, =0.0.1a1 and more Source cves: CVE-2020-7695 Source advisory: SNYK:PYTHON-UVICORN-570471...

MGASA-2020-0249 Updated python-typed-ast packages fix security vulnerability

Updated python-typed-ast package fixes security vulnerabilities: typedast 1.3.0 and 1.3.1 has a handlekeywordonlyargs out-of-bounds read. An attacker with the ability to cause a Python interpreter to parse Python source but not necessarily execute it may be able to crash the interpreter process...

ambition-edc (>=0.3.68 <=0.3.72), caluma (>=5.2.1 <=5.3.1) +28 more potentially affected by CVE-2020-9402 via django (>=2.2.0 <=2.2.10)

django PYPI version =2.2.0, =0.3.68, =5.2.1, =0.1.0, =0.0.1, =0.0.1, =0.0.1, =0.0.26 - django-smorest =0.1.3 - djangorestframework-simplejwt-captcha =1.1.4 - djpub =0.0.1 and more Source cves: CVE-2020-9402 Source advisory: OSV:GHSA-3GH2-XW74-JMCW...

abba-python (>=0.1.6 <=0.3.0), adpred (>=1.1.2 <=1.2.7) +357 more potentially affected by CVE-2018-21233 via tensorflow (>=1.0.1 <=1.6.0)

tensorflow PYPI version =1.0.1, =0.1.6, =1.1.2, =0.0.1, =0.3.26, =0.2.0, =0.3.1, =0.1.0, =0.4.2, =0.1.0, =0.4.0, =0.1.0, =0.3.1 and more Source cves: CVE-2018-21233 Source advisory: OSV:GHSA-H98H-8MXR-M8GX...

adversarial-labeller (=0.1.8), alo7-airflow (>=1.10.0 <=1.10.0.7) +113 more potentially affected by CVE-2020-6802 via bleach (>=1.2.2 <=3.1.0)

bleach PYPI version =1.2.2, =1.10.0, =0.1.0, =0.0.6, =0.3.0, =0.3.4, =0.0.5, =0.1.3, =0.0.1, =0.2.1, =1.0.2, =0.1.2, =1.0.7 and more Source cves: CVE-2020-6802 Source advisory: OSV:PYSEC-2020-27...

add-psd-layer (=0.1.0), agkit (=0.27.0) +36 more potentially affected by CVE-2020-10571 via psd-tools (>=1.10.2 <=1.9.28)

psd-tools PYPI version =1.10.2, =0.1.2, =0.1.1, =0.1.0, =2.0.0, =4.1.0, =0.8.0, =0.1.0, =0.1.6, =2023.0.0, =1.1.0, =2024.0.0, =0.3.0, =0.9.1 and more Source cves: CVE-2020-10571 Source advisory: OSV:PYSEC-2020-91...

alcali (>=2018.3.4 <=2019.2.4.post0), argus-server (>=1.0.0 <=1.1.1) +164 more potentially affected by CVE-2020-9402 via django (>=3.0.0 <=3.0.3)

django PYPI version =3.0.0, =2018.3.4, =1.0.0, =0.1.0, =0.1.3, =0.18.0, =0.3.0, =2.8.0, =0.1.1, =0.0.1, =0.1.3 - djangelo =0.1.4 - django-acsecure =0.1.3 - django-add-default-value =0.4.0 - django-admin-custom-filters =0.1.0 and more Source cves: CVE-2020-9402 Source advisory: OSV:PYSEC-2020-36...

SUSE-SU-2020:0555-1 Security update for python-aws-sam-translator, python-boto3, python-botocore, python-cfn-lint, python-jsonschema, python-nose2, python-parameterized, python-pathlib2, python-pytest-cov, python-requests, python-s3transfer

This update for python-aws-sam-translator, python-boto3, python-botocore, python-cfn-lint, python-jsonschema, python-nose2, python-parameterized, python-pathlib2, python-pytest-cov, python-requests, python-s3transfer, python-jsonpatch, python-jsonpointer, python-scandir, python-PyYAML fixes the...

adversarial-labeller (=0.1.8), alo7-airflow (>=1.10.0 <=1.10.0.7) +113 more potentially affected by CVE-2020-6802 via bleach (>=1.2.2 <=3.1.0)

bleach PYPI version =1.2.2, =1.10.0, =0.1.0, =0.0.6, =0.3.0, =0.3.4, =0.0.5, =0.1.3, =0.0.1, =0.2.1, =1.0.2, =0.1.2, =1.0.7 and more Source cves: CVE-2020-6802 Source advisory: OSV:GHSA-Q65M-PV3F-WR5R...

acclaim-badges (=0.1.0), admindjango-ckeditor-blog (=0.1.0) +158 more potentially affected by CVE-2019-19844 via django (>=1.10.0 <=1.11.26)

django PYPI version =1.10.0, =0.2.0.dev20181221, =0.1.0b2696.post0.dev1, =0.2.1, =3.1.4, =2.0.0, =0.3.1, =0.0.19, =0.0.24 and more Source cves: CVE-2019-19844 Source advisory: OSV:GHSA-VFQ6-HQ5R-27R6...

agogosml-cli (=0.1.2), asrtt (>=0.0.2 <=1.3.2) +10 more potentially affected by CVE-2019-19588 via validators (>=0.12.2 <=0.12.5)

validators PYPI version =0.12.2, =0.0.2, =0.1.1, =1.0.5, =0.9.0, =0.1.3, =0.2.2, =0.1.0, =0.6.13, =0.1.1, =0.4.0.dev0 Source cves: CVE-2019-19588 Source advisory: OSV:PYSEC-2019-134...

aeropress (=0.0.5), allennlp-datalawyer (>=0.1.0 <=0.1.10) +34 more potentially affected by CVE-2019-19275 via typed-ast (>=0.6.3 <=1.3.1)

typed-ast PYPI version =0.6.3, =0.1.0, =1.0.1, =1.0.17, =2.4.1, =0.1.1, =1.0.0, =2.2.2b1, =0.31.0, =1.3.5, =1.0.0, =0.3.4, =0.9.94, =2.0.3 - hmt-escrow =0.2.0rc1 and more Source cves: CVE-2019-19275 Source advisory: OSV:PYSEC-2019-131...

bookscrape (>=0.0.1.dev1 <=0.0.2b7), codeforlife-portal (>=1.1.1 <=2.28.1) +53 more potentially affected by CVE-2019-17626 via reportlab (>=3.1.44 <=3.5.26)

reportlab PYPI version =3.1.44, =0.0.1.dev1, =1.1.1, =0.7.0, =0.1.0, =0.0.2, =1.1.0, =2.7.0, =2.3.0.18073018, =2.3.0.18070609, =2.3.0.18070422, =0.1.0, =0.733.0, =0.736.0 and more Source cves: CVE-2019-17626 Source advisory: OSV:PYSEC-2019-117...