Lucene search
K

15 matches found

RedHat Linux
RedHat Linux
added 2026/06/29 10:39 a.m.8 views

Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: python3.12: python3.12-3.12.13-3.2.hum1 aarch64, x8664 python3.12-debug-3.12.13-3.2.hum1 aarch64, x8664 python3.12-devel-3.12.13-3.2.hum1 aarch64, x8664 python3.12-idle-3.12.13-3.2.hum1 aarch64,...

6.1CVSS5.8AI score0.00229EPSS
Exploits1References3
Rockylinux
Rockylinux
added 2026/06/27 6:4 a.m.6 views

python3.14 security, bug fix, and enhancement update

An update is available for python3.14. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming...

7.1CVSS7.6AI score0.0029EPSS
Exploits1
OSV
OSV
added 2026/06/26 2:5 p.m.2 views

SUSE-SU-2026:2664-1 Security update for python, python-base, python-doc

This update for python, python-base, python-doc fixes the following issues Security fixes: - CVE-2026-1703: files may be extracted outside the installation directory when installing and extracting maliciously crafted wheel archives bsc1257599. - CVE-2026-3219: pip doesn't reject concatenated ZIP...

9.1CVSS7.4AI score0.00579EPSS
Exploits2References16
Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.10 views

RHEL 9 : python3.14 (RHSA-2026:28247)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:28247 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

7.1CVSS7.6AI score0.0029EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/06/23 11:39 p.m.10 views

Important: Red Hat Security Advisory: python3.14 security, bug fix, and enhancement update

An update for python3.14 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

7.1CVSS6.4AI score0.0029EPSS
Exploits1References3
Amazon
Amazon
added 2026/06/08 12:0 a.m.13 views

Medium: python3.13

Issue Overview: http.cookies.Morsel.jsoutput returns an inline snippet and only escapes " for JavaScript string context. It does not neutralize the HTML parser-sensitive sequence inside the generated script element. Mitigation base64-encodes the cookie value to disallow escaping using cookie valu...

6.1CVSS5.4AI score0.00229EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.17 views

Amazon Linux 2023 : python3, python3-devel, python3-idle (ALAS2023-2026-1785)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1785 advisory. http.cookies.Morsel.jsoutput returns an inline snippet and only escapes for JavaScript string context. It does not neutralize the HTML parser-sensitive sequence inside the generated script element...

6.1CVSS5.5AI score0.00229EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2026/05/18 7:49 a.m.10 views

Security update for python310

This update for python310 fixes the following issues Security issues: CVE-2026-1502: HTTP client proxy tunnel headers not validated for CR/LF bsc1261969. CVE-2026-3446: base64 decoding stops at first padded quad by default bsc1261970. CVE-2026-4786: incomplete mitigation of , %action expansion fo...

9.1CVSS7.9AI score0.00579EPSS
Exploits1References22
OSV
OSV
added 2026/05/09 12:33 p.m.10 views

OESA-2026-2271 python3 security update

Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...

6.1CVSS5.8AI score0.00229EPSS
Exploits1References2
Wolfi
Wolfi
added 2026/05/08 7:48 p.m.23 views

CVE-2026-6019 vulnerabilities

Vulnerabilities for packages: python...

6.1CVSS5.8AI score0.00229EPSS
Exploits1
OPENSUSE Linux
OPENSUSE Linux
added 2026/04/30 12:0 a.m.9 views

python315-3.15.0~a8-3.1 on GA media (moderate)

python315-3.15.0a8-3.1 on GA media Announcement ID: openSUSE-SU-2026:10648-1 Rating: moderate Cross-References: CVE-2026-1502 CVE-2026-4786 CVE-2026-5713 CVE-2026-6019 CVE-2026-6100 CVSS scores: CVE-2026-1502 SUSE : 4.9 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N CVE-2026-1502 SUSE : 5.7...

9.1CVSS5.2AI score0.00579EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/04/23 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2026-6019

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - http.cookies.Morsel.jsoutput returns an inline snippet and only escapes for JavaScript string context. It does not neutralize the HTML parser-sensitive sequence...

6.1CVSS6AI score0.00229EPSS
Exploits1References4
NVD
NVD
added 2026/04/22 8:16 p.m.4 views

CVE-2026-6019

http.cookies.Morsel.jsoutput returns an inline snippet and only escapes " for JavaScript string context. It does not neutralize the HTML parser-sensitive sequence inside the generated script element. Mitigation base64-encodes the cookie value to disallow escaping using cookie value...

6.1CVSS0.00229EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/04/22 7:28 p.m.90 views

CVE-2026-6019 BaseCookie.js_output() does not neutralize embedded characters

http.cookies.Morsel.jsoutput returns an inline snippet and only escapes " for JavaScript string context. It does not neutralize the HTML parser-sensitive sequence inside the generated script element. Mitigation base64-encodes the cookie value to disallow escaping using cookie value...

2.1CVSS0.00229EPSS
Exploits1References6
CVE
CVE
added 2026/04/22 7:28 p.m.73 views

CVE-2026-6019

CVE-2026-6019 affects Python’s http.cookies.Morsel.js_output(), which can emit an inline sequence inside the generated script. Public sources indicate the fix is included in Python updates bundled in SUSE’s python39/python3 advisories (SUSE-SU-2026:1818-1) and OSV entries, with mitigation noting...

6.1CVSS5.7AI score0.00229EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder