Lucene search
+L

957 matches found

AlmaLinux
AlmaLinux
added 2026/04/27 12:0 a.m.27 views

Important: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

9.1CVSS6.7AI score0.01279EPSS
Exploits1References24
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.13 views

SUSE SLES15 Security Update : python311 (SUSE-SU-2026:1530-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1530-1 advisory. - CVE-2025-13462: incorrect parsing of TarInfo header when GNU long name and type AREGTYPE are combined bsc1259611. - CVE-2026-3479...

7.5CVSS5.9AI score0.00621EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2026/04/21 11:4 a.m.9 views

Security update for python311

This update for python311 fixes the following issues: CVE-2025-13462: incorrect parsing of TarInfo header when GNU long name and type AREGTYPE are combined bsc1259611. CVE-2026-3479: python: improper resource argument validation can allow path traversal bsc1259989. CVE-2026-3644: incomplete contr...

8.2CVSS5.8AI score0.00621EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2026/04/18 12:0 a.m.9 views

SUSE SLES12: libpython2_7-1_0 / libpython2_7-1_0-32bit / python / python-32bit / etc (SUSE-SU-2026:1417-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1417-1 advisory. - CVE-2025-13462: incorrect parsing of TarInfo header when GNU long name and type AREGTYPE are combined bsc1259611. - CVE-2026-3479: improper...

7.5CVSS6.8AI score0.00621EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.9 views

SUSE SLES15: libpython3_10-1_0 / libpython3_10-1_0-32bit / python310 / etc (SUSE-SU-2026:1376-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1376-1 advisory. - CVE-2025-13462: incorrect parsing of TarInfo when GNU long name and type AREGTYPE are combined can lead to...

7.5CVSS6.7AI score0.00621EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2026/04/16 4:41 p.m.11 views

Security update for python

This update for python fixes the following issues: CVE-2025-13462: incorrect parsing of TarInfo header when GNU long name and type AREGTYPE are combined bsc1259611. CVE-2026-3479: improper resource argument validation can allow path traversal bsc1259989. CVE-2026-3644: incomplete control characte...

8.2CVSS5.8AI score0.00621EPSS
Exploits0References20
SUSE Linux
SUSE Linux
added 2026/04/16 9:16 a.m.7 views

Security update for python3

This update for python3 fixes the following issues: CVE-2025-13462: incorrect parsing of TarInfo header when GNU long name and type AREGTYPE are combined bsc1259611. CVE-2026-3479: improper resource argument validation can allow path traversal bsc1259989. CVE-2026-3644: incomplete control charact...

8.2CVSS5.9AI score0.00621EPSS
Exploits0References20
SUSE Linux
SUSE Linux
added 2026/04/15 7:7 p.m.12 views

Security update for python310

This update for python310 fixes the following issues: CVE-2025-13462: incorrect parsing of TarInfo when GNU long name and type AREGTYPE are combined can lead to misinterpretation of tar archives bsc1259611. CVE-2026-3479: improper resource argument validation in pkgutil.getdata can lead to path...

8.2CVSS5.9AI score0.00621EPSS
Exploits0References20
OSV
OSV
added 2026/04/15 7:6 p.m.7 views

SUSE-SU-2026:1376-1 Security update for python310

This update for python310 fixes the following issues: - CVE-2025-13462: incorrect parsing of TarInfo when GNU long name and type AREGTYPE are combined can lead to misinterpretation of tar archives bsc1259611. - CVE-2026-3479: improper resource argument validation in pkgutil.getdata can lead to pa...

7.5CVSS5.8AI score0.00621EPSS
Exploits0References11
SUSE Linux
SUSE Linux
added 2026/04/15 1:37 p.m.7 views

Security update for python313

This update for python313 fixes the following issues: Update to v3.13.13 CVE-2025-13462: incorrect parsing of TarInfo header when GNU long name and type AREGTYPE are combined bsc1259611. CVE-2026-2297: cpython: incorrectly handled hook in FileLoader can lead to validation bypass bsc1259240...

8.3CVSS5.9AI score0.00621EPSS
Exploits0References30
SUSE Linux
SUSE Linux
added 2026/04/15 1:36 p.m.5 views

Security update for expat

This update for expat fixes the following issues: CVE-2026-32776: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value bsc1259726. CVE-2026-32777: denial of service due to infinite loop in DTD content parsing bsc1259711. CVE-2026-32778: NUL...

8.7CVSS5.8AI score0.00216EPSS
Exploits1References12
OSV
OSV
added 2026/04/14 11:33 p.m.12 views

GHSA-FCPV-W245-R2Q7 DotNetNuke.Core security code analysis rules triggered

The codebase raises code analysis warnings related to security, including CA3075, CA5366, CA5371, CA5368, CA5369, CA5372, CA5379, CA5350, and CA5351. Most of these deal with disabling DTD processing in XML documents, but also includes cryptographic algorithm choices...

5.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/14 12:0 a.m.8 views

SUSE SLES15 / openSUSE 15 Security Update : python312 (SUSE-SU-2026:1292-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1292-1 advisory. - CVE-2025-13462: incorrect parsing of TarInfo when GNU long name and type AREGTYPE are combined can lead to...

7.5CVSS5.8AI score0.00621EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2026/04/13 12:32 p.m.8 views

Security update for python39

This update for python39 fixes the following issues: CVE-2025-13462: incorrect parsing of TarInfo when GNU long name and type AREGTYPE are combined can lead to misinterpretation of tar archives bsc1259611. CVE-2026-3644: incomplete control character validation in http.cookies can lead to input...

8.2CVSS5.9AI score0.00621EPSS
Exploits0References16
OSV
OSV
added 2026/04/13 9:49 a.m.5 views

SUSE-SU-2026:21178-1 Security update for python313

This update for python313 fixes the following issues: Update to version 3.13.13. - CVE-2025-13462: incorrect parsing of TarInfo when GNU long name and type AREGTYPE are combined can lead to misinterpretation of tar archives bsc1259611. - CVE-2026-2297: incorrectly handled hook in FileLoader can...

7.5CVSS5.8AI score0.00621EPSS
Exploits0References15
OSV
OSV
added 2026/04/13 9:41 a.m.3 views

OPENSUSE-SU-2026:20517-1 Security update for python313

This update for python313 fixes the following issues: Update to version 3.13.13. - CVE-2025-13462: incorrect parsing of TarInfo when GNU long name and type AREGTYPE are combined can lead to misinterpretation of tar archives bsc1259611. - CVE-2026-2297: incorrectly handled hook in FileLoader can...

7.5CVSS5.8AI score0.00621EPSS
Exploits0References14
OSV
OSV
added 2026/04/13 8:10 a.m.3 views

SUSE-SU-2026:1292-1 Security update for python312

This update for python312 fixes the following issues: - CVE-2025-13462: incorrect parsing of TarInfo when GNU long name and type AREGTYPE are combined can lead to misinterpretation of tar archives bsc1259611. - CVE-2026-3479: improper resource argument validation in pkgutil.getdata can lead to pa...

7.5CVSS5.9AI score0.00621EPSS
Exploits0References11
OSV
OSV
added 2026/04/11 2:5 p.m.10 views

OESA-2026-1902 python3 security update

Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...

7.5CVSS5.7AI score0.00621EPSS
Exploits0References5
OSV
OSV
added 2026/04/11 2:5 p.m.4 views

OESA-2026-1886 expat security update

expat is a stream-oriented XML parser library written in C. expat excels with files too large to fit RAM, and where performance and flexibility are crucial. Security Fixes: libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content.CVE-2026-32776 libexpat...

5.5CVSS5.8AI score0.00216EPSS
Exploits1References3
OSV
OSV
added 2026/04/11 2:5 p.m.6 views

OESA-2026-1884 expat security update

expat is a stream-oriented XML parser library written in C. expat excels with files too large to fit RAM, and where performance and flexibility are crucial. Security Fixes: libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content.CVE-2026-32776 libexpat...

5.5CVSS5.8AI score0.00216EPSS
Exploits1References3
Rows per page
Query Builder