65 matches found
K000160730: Microsoft semantic kernel Python SDK vulnerability CVE-2026-26030
Security Advisory Description Semantic Kernel, Microsoft's semantic kernel Python SDK, has a remote code execution vulnerability in versions prior to 1.39.4, specifically within the InMemoryVectorStore filter functionality. The problem has been fixed in version python-1.39.4. Users should upgrade...
RHEL 8 : python3 (RHSA-2026:5221)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:5221 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...
python311-uv-0.10.11-1.1 on GA media (moderate)
python311-uv-0.10.11-1.1 on GA media Announcement ID: openSUSE-SU-2026:10380-1 Rating: moderate Cross-References: CVE-2026-31812 CVSS scores: CVE-2026-31812 SUSE : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-31812 SUSE : 6.9...
PT-2026-5709
Amazon SageMaker Python SDK before v3.1.1 or v2.256.0 disables TLS certificate verification for HTTPS connections made by the service when a Triton Python model is imported, incorrectly allowing for requests with invalid and self-signed certificates to succeed...
CVE-2018-1000117
Python Software Foundation CPython version From 3.2 until 3.6.4 on Windows contains a Buffer Overflow vulnerability in os.symlink function on Windows that can result in Arbitrary code execution, likely escalation of privilege. This attack appears to be exploitable via a python script that creates...
PSF Warns of Fake PyPI Login Site Stealing User Credentials
The Python Software Foundation PSF warns developers of phishing emails leading to a fake PyPI login site designed to steal account credentials...
ALSA-2025:12834 Moderate: python3.12-setuptools security update
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...
Model Context Protocol Python SDK å®å Øę¼ę“
Model Context Protocol Python SDK is a Model Context Protocol open source development tool for Model Context Protocol servers and clients. A security vulnerability exists in the Model Context Protocol Python SDK prior to version 1.10.0, which stems from an uncaught ClosedResourceError that could...
Model Context Protocol Python SDK å®å Øę¼ę“
Model Context Protocol Python SDK is a Model Context Protocol open source development tool for Model Context Protocol servers and clients. A security vulnerability exists in the Model Context Protocol Python SDK prior to version 1.9.4, which stems from an unhandled exception when handling malform...
OPENSUSE-SU-2025:14987-1 python311-PyJWT-2.10.1-2.1 on GA media
These are all security issues fixed in the python311-PyJWT-2.10.1-2.1 package on the GA media of openSUSE Tumbleweed...
Security Bulletin: Vulnerability inPython Software Foundation Black affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component.
Summary Potential vulnerability in Python Software Foundation Black has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. The vulnerability have been addressed. Refer to details for additional...
GHSA-87QC-Q3W7-7M8W vulnerabilities
Vulnerabilities for packages: python, nodejs...
GHSA-7PWV-G7HJ-39PR vulnerabilities
Vulnerabilities for packages: python, nodejs...
GHSA-XHF3-PP4Q-GXH5 vulnerabilities
Vulnerabilities for packages: python...
CVE-2025-0938 vulnerabilities
Vulnerabilities for packages: python...
Security Bulletin: Vulnerability in Python Software Foundation BlackĀ ( CVE-2024-21503) may affect IBM watsonx Assistant for IBM Cloud Pak for Data
Summary A potential denial of service vulnerability CVE-2024-21503 has been identified related to Python Software Foundation Black that may affect IBM watsonx Assistant for IBM Cloud Pak for Data. The vulnerability have been addressed. Refer to details for additional information. Vulnerability...
Advisory ROSA-SA-2025-2669
software: python3 3.8.13 WASP: ROSA-CHROME packageevrstring: python3-3.8.13 CVE-ID: CVE-2015-20107 BDU-ID: 2022-03962 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the mailcap module of the Python programming language interpreter is related to insufficient validation of arguments passed to a...
BIT-PYTHON-MIN-2022-48566
An issue was discovered in comparedigest in Lib/hmac.py in Python through 3.9.1. Constant-time-defeating optimisations were possible in the accumulator variable in hmac.comparedigest...
RHSA-2025:0280 Red Hat Security Advisory: python3.11 security update
Bulletin has no description...
CVE-2024-12254 vulnerabilities
Vulnerabilities for packages: python...