25 matches found
BIT-PYTHON-MIN-2023-24329
An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters...
EulerOS 2.0 SP11 : python3 (EulerOS-SA-2023-2663)
According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote...
EulerOS 2.0 SP8 : python2 (EulerOS-SA-2023-3149)
According to the versions of the python2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA...
EulerOS Virtualization 2.11.1 : python3 (EulerOS-SA-2023-2739)
According to the versions of the python3 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assist...
EulerOS Virtualization 3.0.6.6 : python (EulerOS-SA-2023-3412)
According to the versions of the python packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL...
Fedora 39 : python2.7 (2023-7cdb3b48f1)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-7cdb3b48f1 advisory. Automatic update for python2.7-2.7.18-31.fc39. Changelog Thu May 25 2023 Lumr Balhar - 2.7.18-31 - Fix for CVE-2023-24329 Resolves: rhbz2174011 Tenable has...
Fedora 39 : pypy3.10 (2023-ddde191e04)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-ddde191e04 advisory. Automatic update for pypy3.10-7.3.12-1.3.10.fc39. Changelog Wed Jul 26 2023 Miro Hronok - 7.3.12-1.3.10 - Initial PyPy 3.10 package Wed Jul 26 2023...
Fedora 39 : python3.7 (2023-75c4fc87fc)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-75c4fc87fc advisory. Automatic update for python3.7-3.7.16-4.fc39. Changelog Mon May 29 2023 Charalampos Stratakis - 3.7.16-4 - Fix for CVE-2023-24329 Resolves: rhbz2174014 Tenab...
Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2023-2530)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 2.9.1 : python3 (EulerOS-SA-2023-2517)
According to the versions of the python3 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a UR...
CentOS 7 : python3 (RHSA-2023:3556)
The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:3556 advisory. - An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank...
SUSE SLED15: libpython3_10-1_0 / libpython3_10-1_0-32bit / python310 / etc (SUSE-SU-2023:2884-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2884-1 advisory. - Make marshalling of set and frozenset deterministic bsc1211765 python310 was updated to 3.10.1...
CentOS 8 : python39:3.9 and python39-devel:3.9 (CESA-2023:3811)
The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:3811 advisory. - An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank...
CentOS 8 : python38:3.8 and python38-devel:3.8 (CESA-2023:3781)
The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:3781 advisory. - An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank...
Oracle Linux 9 : python3.9 (ELSA-2023-3595)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-3595 advisory. 3.9.16-1.1 - Security fix for CVE-2023-24329 Resolves: rhbz2173917 Tenable has extracted the preceding description block directly from the Oracle Linux security...
Oracle Linux 7 : python (ELSA-2023-3555)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-3555 advisory. 2.7.5-93.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-93 - Fix for CVE-2023-24329 Resolves: rhbz2173917 Tenable has extracted the...
Fedora 37 : python3.9 (2023-03599274db)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-03599274db advisory. Security fix for CVE-2023-24329 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Fedora 38 : python3.8 (2023-d8b0003ecd)
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-d8b0003ecd advisory. Fix for CVE-2023-24329 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...
EulerOS 2.0 SP10 : python3 (EulerOS-SA-2023-1808)
According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts...
Amazon Linux AMI : python38 (ALAS-2023-1714)
The version of python38 installed on the remote host is prior to 3.8.5-1.9. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1714 advisory. An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing...