Lucene search
+L

260 matches found

OSV
OSV
added 2024/07/05 11:22 a.m.6 views

CLSA-2024-1720178532 python3: Fix of 2 CVEs

CVE-2023-6597: Prevent tempfile.TemporaryDirectory class dereference symlinks - CVE-2024-0450: Make zipfile module reject zip archives which overlap entries in the archive. Prevent “quoted-overlap” zip-bombs exploit...

7.8CVSS6.8AI score0.00336EPSS
Exploits0References1
OSV
OSV
added 2024/07/05 11:19 a.m.8 views

CLSA-2024-1720178375 python2: Fix of CVE-2024-0450

CVE-2024-0450: Make zipfile module reject zip archives which overlap entries in the archive. Prevent “quoted-overlap” zip-bombs exploit...

6.2CVSS6.8AI score0.00336EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/07/02 3:42 p.m.20 views

Moderate: Red Hat Security Advisory: python3 security update

An update for python3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

6.2CVSS6.8AI score0.00336EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/07/02 3:42 p.m.3 views

python: The zipfile module is vulnerable to zip-bombs leading to denial of service

A flaw was found in the Python/CPython 'zipfile' that can allow a zip-bomb type of attack. An attacker may craft a zip file format, leading to a Denial of Service when processed...

6.2CVSS6.7AI score0.00336EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/07/02 12:0 a.m.17 views

RHEL 8 : python3 (RHSA-2024:4243)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4243 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...

6.2CVSS7.2AI score0.00336EPSS
Exploits0References5
OSV
OSV
added 2024/07/02 12:0 a.m.24 views

ALSA-2024:4243 Moderate: python3 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6.2CVSS7.2AI score0.00336EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/07/02 12:0 a.m.28 views

Moderate: python3 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6.2CVSS7.2AI score0.00336EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/06/28 12:0 a.m.35 views

EulerOS 2.0 SP12 : python3 (EulerOS-SA-2024-1861)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was found in the CPython tempfile.TemporaryDirectory class affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior.The...

7.8CVSS6.9AI score0.00336EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/28 12:0 a.m.31 views

EulerOS 2.0 SP12 : python3 (EulerOS-SA-2024-1875)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was found in the CPython tempfile.TemporaryDirectory class affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior.The...

7.8CVSS6.9AI score0.00336EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/06/26 11:39 p.m.4 views

SUSE CVE-2023-0475

HashiCorp go-getter up to 1.6.2 and 2.1.1 is vulnerable to decompression bombs. Fixed in 1.7.0 and 2.2.0...

6.5CVSS5.5AI score0.00454EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/25 12:0 a.m.40 views

EulerOS 2.0 SP11 : python3 (EulerOS-SA-2024-1822)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was found in the CPython tempfile.TemporaryDirectory class affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior.The...

7.8CVSS6.9AI score0.00336EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/25 12:0 a.m.28 views

EulerOS 2.0 SP11 : python3 (EulerOS-SA-2024-1843)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was found in the CPython tempfile.TemporaryDirectory class affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior.The...

7.8CVSS6.9AI score0.00336EPSS
Exploits0References3
OSV
OSV
added 2024/06/25 12:0 a.m.36 views

ALSA-2024:4078 Important: python3.9 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.8CVSS7.4AI score0.00336EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/06/25 12:0 a.m.37 views

AlmaLinux 9 : python3.9 (ALSA-2024:4078)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:4078 advisory. python: Path traversal on tempfile.TemporaryDirectory CVE-2023-6597 python: The zipfile module is vulnerable to zip-bombs leading to denial of service...

7.8CVSS7AI score0.00336EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/06/24 4:52 a.m.390 views

Important: Red Hat Security Advisory: python3.11 security update

An update for python3.11 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

7.8CVSS6.8AI score0.00336EPSS
Exploits0References3
OSV
OSV
added 2024/06/24 12:0 a.m.27 views

ALSA-2024:4058 Important: python3.11 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.8CVSS7.4AI score0.00336EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/06/24 12:0 a.m.37 views

AlmaLinux 8 : python3.11 (ALSA-2024:4058)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:4058 advisory. python: Path traversal on tempfile.TemporaryDirectory CVE-2023-6597 python: The zipfile module is vulnerable to zip-bombs leading to denial of service...

7.8CVSS7AI score0.00336EPSS
Exploits0References3
AlmaLinux
AlmaLinux
added 2024/06/24 12:0 a.m.51 views

Important: python3.11 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.8CVSS7.6AI score0.00336EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/06/20 12:0 a.m.22 views

Fedora 39 : composer (2024-bb55f8476a)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-bb55f8476a advisory. Version 2.7.7 2024-06-10 Security: Fixed command injection via malicious git branch name GHSA-47f6-5gq3-vx9c / CVE-2024-35241 Security: Fixed multip...

8.8CVSS8AI score0.03282EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/19 12:0 a.m.24 views

Fedora 40 : composer (2024-9ed24c98cd)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-9ed24c98cd advisory. Version 2.7.7 2024-06-10 Security: Fixed command injection via malicious git branch name GHSA-47f6-5gq3-vx9c / CVE-2024-35241 Security: Fixed multip...

8.8CVSS8AI score0.03282EPSS
Exploits0References3
Rows per page
Query Builder