Fedora: Security Advisory for python3.9 (FEDORA-2023-7aa64e4a41)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 37 Update: python3.9-3.9.18-1.fc37

Python 3.9 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.9, see other distributions that support it, such as CentOS or RHEL or older Fedo...

Design/Logic Flaw

A use-after-free exists in Python through 3.9 via heappushpop in heapq...

PSF-2023-11 Use-after-free in heappushpop() of heapq module

A use-after-free exists in Python through 3.9 via heappushpop in heapq...

Python 资源管理错误漏洞

Python is an open source, object-oriented programming language from the Python Foundation. The language is extensible, supports modules and packages, and supports multiple platforms. A security vulnerability exists in Python 3.9, which stems from a post-release reuse issue with heappushpop in hea...

[SECURITY] Fedora 38 Update: python3.9-3.9.16-4.fc38

Python 3.9 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.9, see other distributions that support it, such as CentOS or RHEL or older Fedo...

[SECURITY] Fedora 37 Update: python3.9-3.9.16-2.fc37

Python 3.9 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.9, see other distributions that support it, such as CentOS or RHEL or older Fedo...

Oracle Linux 8 : python39:3.9 / and / python39-devel:3.9 (ELSA-2023-2764)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-2764 advisory. - An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA RFC 34...

GHSA-RWMF-W63J-P7GV CairoSVG improperly processes SVG files loaded from external resources

SSRF vulnerability Summary When CairoSVG processes an SVG file, it can make requests to the inner host and different outside hosts. Operating system, version and so on Linux, Debian Buster LTS core 5.10 / Parrot OS 5.1 Electro Ara, python 3.9 Tested CairoSVG version 2.6.0 Details A specially...

Oracle Linux 9 : python3.9 (ELSA-2023-0953)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-0953 advisory. 3.9.14-1.2 - Security fix for CVE-2022-45061 Resolves: rhbz2144072 Tenable has extracted the preceding description block directly from the Oracle Linux security...

AlmaLinux 9 : python3.9 (ALSA-2023:0953)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:0953 advisory. - An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA RFC 3490 decoder,...

RHEL 9 : python3.9 (RHSA-2023:0953)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0953 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...

Rocky Linux 8 : python39:3.9 and python39-devel:3.9 (RLSA-2022:7592)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:7592 advisory. - In Python aka CPython up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow...

Amazon Linux 2022 : python3.10, python3.10-devel, python3.10-idle (ALAS2022-2023-274)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2023-274 advisory. Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux allows local privilege escalation in a non- default configuration. The Python multiprocessing library, when used with the forkserver...

Amazon Linux 2022 : python3, python3-devel, python3-idle (ALAS2022-2023-273)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2023-273 advisory. Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux allows local privilege escalation in a non- default configuration. The Python multiprocessing library, when used with the forkserver...

[SECURITY] Fedora 37 Update: pypy3.9-7.3.11-1.3.9.fc37

PyPy's implementation of Python 3.9, featuring a Just-In-Time compiler on some CPU architectures, and various optimized implementations of the standard types strings, dictionaries, etc.. This build of PyPy has JIT-compilation enabled...

Fedora 35 : python3.9 (2022-1166a1df1e)

The remote Fedora 35 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-1166a1df1e advisory. Security fix for CVE-2022-42919 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

Fedora 36 : python3.9 (2022-b17bf30e88)

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-b17bf30e88 advisory. Security fix for CVE-2022-42919 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

Fedora 36 : python3.9 (2022-fd3771db30)

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-fd3771db30 advisory. Update to 3.9.16 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

Fedora 35 : python3.11 (2022-a04a020e48)

The remote Fedora 35 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-a04a020e48 advisory. The final release of Python 3.11.0. Contains security fix for CVE-2022-42919. Tenable has extracted the preceding description block directly from th...