Lucene search
K

80 matches found

Fedora
Fedora
added 6 days ago9 views

[SECURITY] Fedora 43 Update: python-rignore-0.7.6-7.fc43

rignore is a Python module that provides a high-performance, Rust-powered file system traversal functionality. It wraps the Rust ignore crate using PyO3, offering an efficient way to walk through directories while respecting various ignore rules...

6AI score
Exploits0
Github Security Blog
Github Security Blog
added 2026/06/12 8:9 p.m.29 views

PyO3 has a missing `Sync` bound on `PyCFunction::new_closure` closures

PyCFunction::newclosure and the temporary newclosurebound complement in the 0.21–0.22 series required the supplied closure to be Send + 'static but not Sync. The resulting PyCFunction is a Python callable that can be invoked from any Python thread, which means the closure may be called concurrent...

5.6AI score
Exploits0References4Affected Software1
OSV
OSV
added 2026/06/12 7:32 p.m.18 views

GHSA-36HH-V3QG-5JQ4 PyO3 has an Out-of-bounds Read in `nth` / `nth_back` for `PyList` and `PyTuple` iterators

PyO3 0.24.0 added optimized implementations of Iterator::nth and DoubleEndedIterator::nthback for the BoundListIterator and BoundTupleIterator types. These implementations computed the target index using unchecked usize addition index + n before bounds-checking against the sequence length, then...

8.7CVSS5.7AI score
Exploits0References3
Fedora
Fedora
added 2026/03/29 1:8 a.m.15 views

[SECURITY] Fedora 42 Update: maturin-1.9.6-4.fc42

Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...

6.5CVSS5.8AI score0.00379EPSS
Exploits1
Fedora
Fedora
added 2026/03/28 12:46 a.m.8 views

[SECURITY] Fedora 43 Update: maturin-1.9.6-5.fc43

Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...

6.5CVSS5.8AI score0.00379EPSS
Exploits1
Fedora
Fedora
added 2026/03/28 12:19 a.m.11 views

[SECURITY] Fedora 44 Update: maturin-1.9.6-5.fc44

Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...

6.5CVSS5.8AI score0.00379EPSS
Exploits1
Fedora
Fedora
added 2026/03/10 12:54 a.m.7 views

[SECURITY] Fedora 43 Update: rust-pythonize-0.27.0-1.fc43

Serde Serializer & Deserializer from Rust Python, backed by PyO3...

5.8AI score
Exploits0
Fedora
Fedora
added 2026/02/11 12:59 a.m.11 views

[SECURITY] Fedora 42 Update: maturin-1.9.6-3.fc42

Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...

7.5CVSS5.4AI score0.00443EPSS
Exploits1
Fedora
Fedora
added 2026/02/10 1:34 a.m.11 views

[SECURITY] Fedora 43 Update: maturin-1.9.6-4.fc43

Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...

7.5CVSS5.4AI score0.00443EPSS
Exploits1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-1519

Malware in sbrugna...

5.5CVSS5.4AI score0.00388EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-2969

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.00204EPSS
Exploits0References7
Fedora
Fedora
added 2025/09/12 7:33 p.m.11 views

[SECURITY] Fedora 43 Update: maturin-1.8.7-2.fc43

Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...

2.3CVSS7.1AI score0.00303EPSS
Exploits0
Fedora
Fedora
added 2025/09/11 1:19 a.m.16 views

[SECURITY] Fedora 41 Update: maturin-1.8.7-2.fc41

Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...

2.3CVSS6.7AI score0.00303EPSS
Exploits0
Fedora
Fedora
added 2025/09/11 12:56 a.m.11 views

[SECURITY] Fedora 42 Update: maturin-1.8.7-2.fc42

Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...

2.3CVSS6.7AI score0.00303EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-9979

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in PyO3. This vulnerability causes a use-after-free issue, potentially leading to memory corruption or crashes via unsound borrowing from weak...

5.3CVSS5.6AI score0.00204EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 4:15 p.m.11 views

CVE-2020-35917

An issue was discovered in the pyo3 crate before 0.12.4 for Rust. There is a reference-counting error and use-after-free in From...

5.5CVSS6.9AI score0.00388EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2025/04/02 1:19 p.m.11 views

RuStream (>=0.0.1 <=0.0.2), abd-clam (>=0.23.1 <=0.25.3) +244 more potentially affected by unknown CVE via pyo3 (>=0.1.0 <=0.23.5)

pyo3 CARGO version =0.1.0, =0.0.1, =0.23.1, =0.12.2, =0.2.1, =48.0.0, =0.1.0, =0.3.3, =0.0.1-a1, =0.0.1-a1, =0.1.0, =0.2.37, =1.0.5-beta.1 - bilbyrust =0.1.0 - bitbazaar =0.0.2 and more Source cves: unknown CVE Source advisory: OSV:GHSA-PPH8-GCV7-4QJ5...

5.7AI score
Exploits0
Github Security Blog
Github Security Blog
added 2025/04/02 1:19 p.m.10 views

PyO3 Risk of buffer overflow in `PyString::from_object`

PyString::fromobject took &str arguments and forwarded them directly to the Python C API without checking for terminating nul bytes. This could lead the Python interpreter to read beyond the end of the &str data and potentially leak contents of the out-of-bounds read by raising a Python exception...

6.9AI score
Exploits0References4Affected Software1
OSV
OSV
added 2025/04/02 1:19 p.m.9 views

GHSA-PPH8-GCV7-4QJ5 PyO3 Risk of buffer overflow in `PyString::from_object`

PyString::fromobject took &str arguments and forwarded them directly to the Python C API without checking for terminating nul bytes. This could lead the Python interpreter to read beyond the end of the &str data and potentially leak contents of the out-of-bounds read by raising a Python exception...

6.3CVSS6.9AI score
Exploits0References4
vulnersOsv
vulnersOsv
added 2025/04/01 12:0 p.m.5 views

RuStream (>=0.0.1 <=0.0.2), RustPyNet (>=0.1.0 <=0.1.3) +591 more potentially affected by unknown CVE via pyo3 (>=0.10.1 <=0.23.5)

pyo3 CARGO version =0.10.1, =0.0.1, =0.1.0, =0.21.8, =0.8.0, =0.12.0, =0.2.1, =0.3.0, =0.1.0, =0.1.0, =0.1.0, =0.0.1, =0.0.1, =0.0.14 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0020...

5.7AI score
Exploits0
Rows per page
Query Builder