Lucene search
+L

93 matches found

SUSE Linux
SUSE Linux
added 2026/03/27 9:4 a.m.13 views

Security update for python312

This update for python312 fixes the following issues: Update to Python 3.12.13: CVE-2025-6075: quadratic complexity in os.path.expandvars bsc1252974. CVE-2025-11468: header injection with carefully crafted inputs bsc1257029. CVE-2025-12084: quadratic complexity in xml.minidom node ID cache cleari...

8.7CVSS7AI score0.01525EPSS
Exploits0References40
OSV
OSV
added 2026/03/27 9:4 a.m.6 views

SUSE-SU-2026:1107-1 Security update for python312

This update for python312 fixes the following issues: Update to Python 3.12.13: - CVE-2025-6075: quadratic complexity in os.path.expandvars bsc1252974. - CVE-2025-11468: header injection with carefully crafted inputs bsc1257029. - CVE-2025-12084: quadratic complexity in xml.minidom node ID cache...

7.5CVSS7AI score0.01525EPSS
Exploits0References21
SUSE Linux
SUSE Linux
added 2026/03/26 10:36 a.m.18 views

Security update for python310

This update for python310 fixes the following issues: Update to Python 3.10.20: CVE-2025-6075: quadratic complexity in os.path.expandvars bsc1252974. CVE-2025-11468: header injection with carefully crafted inputs bsc1257029. CVE-2025-12084: quadratic complexity in xml.minidom node ID cache cleari...

8.7CVSS5.9AI score0.01525EPSS
Exploits0References36
OSV
OSV
added 2026/03/26 10:36 a.m.7 views

SUSE-SU-2026:1062-1 Security update for python310

This update for python310 fixes the following issues: Update to Python 3.10.20: - CVE-2025-6075: quadratic complexity in os.path.expandvars bsc1252974. - CVE-2025-11468: header injection with carefully crafted inputs bsc1257029. - CVE-2025-12084: quadratic complexity in xml.minidom node ID cache...

7.5CVSS7AI score0.01525EPSS
Exploits0References19
CNNVD
CNNVD
added 2026/03/26 12:0 a.m.9 views

Red Hat Enterprise Linux 安全漏洞

Red Hat Enterprise Linux is a Linux operating system for enterprise users developed by Red Hat Corporation in the United States. Red Hat Enterprise Linux has a security vulnerability, which stems from excessive heap buffer reading in the PCX file loader. This vulnerability may lead to out-of-boun...

7.1CVSS7.2AI score0.00634EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2026/03/23 2:35 p.m.4 views

Security update for python39

This update for python39 fixes the following issue: CVE-2026-2297: validation bypass via incorrectly handled hook in FileLoader bsc1259240. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...

5.7CVSS5.8AI score0.00202EPSS
Exploits0References4
OSV
OSV
added 2026/03/20 2:24 p.m.4 views

OESA-2026-1658 assimp security update

Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: A vulnerability was found in Open...

8.8CVSS4.8AI score0.00618EPSS
Exploits7References8
OSV
OSV
added 2026/03/16 5:45 p.m.19 views

CLSA-2026-1773683117 gimp: Fix of 4 CVEs

CVE-2026-2044: fix uninitialized memory read in PGM file parser - CVE-2026-2045: fix heap buffer overflow in XWD file loader - CVE-2026-2048: fix out-of-bounds write in XWD file loader - CVE-2026-0797: fix missing fread return value checks in ICO file loader...

8.8CVSS7.3AI score0.01157EPSS
Exploits0References1
OSV
OSV
added 2026/03/15 5:52 a.m.6 views

OESA-2026-1543 assimp security update

Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: A vulnerability was found in Open...

8.8CVSS4.5AI score0.00618EPSS
Exploits6References7
SUSE CVE
SUSE CVE
added 2026/03/13 1:16 p.m.11 views

SUSE CVE-2026-27940

llama.cpp is an inference of several LLM models in C/C++. Prior to b8146, the ggufinitfromfileimpl in gguf.cpp is vulnerable to an Integer overflow, leading to an undersized heap allocation. Using the subsequent fread writes 528+ bytes of attacker-controlled data past the buffer boundary. This is...

7.8CVSS5.9AI score0.00177EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/03/07 12:0 a.m.6 views

Fedora 44 : gimp (2026-b930e5c133)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-b930e5c133 advisory. This is a security update fixing the loader for PSD files. Tenable has extracted the preceding description block directly from the Fedora security advisory...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/03/06 8:50 a.m.35 views

BIT-PYTHON-2026-2297 SourcelessFileLoader does not use io.open_code()

The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...

5.7CVSS5.8AI score0.00202EPSS
Exploits0References7
OSV
OSV
added 2026/03/04 11:16 p.m.8 views

ALPINE-CVE-2026-2297

The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...

5.7CVSS5.4AI score0.00202EPSS
Exploits0References1
NVD
NVD
added 2026/03/04 11:16 p.m.12 views

CVE-2026-2297

The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...

5.7CVSS0.00202EPSS
Exploits0References8
OSV
OSV
added 2026/03/04 11:16 p.m.9 views

AZL-79413 CVE-2026-2297 affecting package python3 3.9.19-19

The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...

5.7CVSS5.7AI score0.00202EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/03/04 11:16 p.m.7 views

CVE-2026-2297

The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...

5.7CVSS5.9AI score0.00202EPSS
Exploits0References3
OSV
OSV
added 2026/03/04 11:16 p.m.14 views

UBUNTU-CVE-2026-2297

The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...

5.7CVSS5.8AI score0.00202EPSS
Exploits0References4
OSV
OSV
added 2026/03/04 10:10 p.m.7 views

PSF-2026-9

The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...

5.7CVSS5.9AI score0.00202EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/03/04 10:10 p.m.63 views

CVE-2026-2297 SourcelessFileLoader does not use io.open_code()

The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...

5.7CVSS0.00202EPSS
Exploits0References7
Snyk
Snyk
added 2026/03/04 10:10 p.m.5 views

Insufficient Logging

Overview Affected versions of this package are vulnerable to Insufficient Logging in the FileLoader class that incorrectly handles legacy SourcelessFileLoader for .pyc files. An attacker can bypass logging mechanisms sys.audit by crafting or manipulating .pyc files to avoid detection or auditing...

5.7CVSS5.8AI score0.00202EPSS
Exploits0References2
Rows per page
Query Builder