TencentOS Server 3: python3 (TSSA-2022:0217)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0217 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

TencentOS Server 4: python3.11 (TSSA-2025:0094)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0094 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

TencentOS Server 3: python3.11 (TSSA-2023:0293)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0293 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Fedora 41 : python3.10 (2025-76b69d1931)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-76b69d1931 advisory. Update to 3.10.18. Security content in this release - gh-135034: CVE 2024-12718 CVE 2025-4138 CVE 2025-4330 CVE 2025-4435 CVE 2025-4517 Fixes multiple issues...

Python, PyPy: Multiple Vulnerabilities

Background Python is an interpreted, interactive, object-oriented, cross-platform programming language. Description Multiple vulnerabilities have been discovered in Python, PyPy3. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers f...

GHSA-P72V-37H5-753V vulnerabilities

Vulnerabilities for packages: python...

GHSA-2PG8-H2J6-28XM vulnerabilities

Vulnerabilities for packages: python...

GHSA-68PJ-XRP5-VCCJ vulnerabilities

Vulnerabilities for packages: python...

GHSA-6R6C-684H-9J7P vulnerabilities

Vulnerabilities for packages: python...

GHSA-4G4G-FQW4-PRP2 vulnerabilities

Vulnerabilities for packages: python...

GHSA-6R6C-684H-9J7P vulnerabilities

Vulnerabilities for packages: python...

NewStart CGSL MAIN 7.02 : python3.11 Multiple Vulnerabilities (NS-SA-2025-0074)

The remote NewStart CGSL host, running version MAIN 7.02, has python3.11 packages installed that are affected by multiple vulnerabilities: - A vulnerability has been found in the CPython venv module and CLI where path names provided when creating a virtual environment were not quoted properly,...

Python Multiple Vulnerabilities (Jun 2025) - Windows

Python is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python"; ifdescription...

Python Multiple Vulnerabilities (Jun 2025) - Mac OS X

Python is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python"; ifdescription...

Python Multiple Vulnerabilities (Jun 2025) - Linux

Python is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python"; ifdescription...

CVE-2024-12718 Bypass extraction filter to modify file metadata outside extraction directory

Allows modifying some file metadata e.g. last modified with filter="data" or file permissions chmod with filter="tar" of files outside the extraction directory. You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using TarFile.extractall or...

K000151520: Python vulnerabilities CVE-2018-20852, CVE-2014-4616, and CVE-2013-7040

Security Advisory Description CVE-2018-20852 http.cookiejar.DefaultPolicy.domainreturnok in Lib/http/cookiejar.py in Python before 3.7.3 does not correctly validate the domain: it can be tricked into sending existing cookies to the wrong server. An attacker may abuse this flaw by using a server...

Alibaba Cloud Linux 3 : 0112: python27:2.7 (ALINUX3-SA-2022:0112)

The remote Alibaba Cloud Linux 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0112 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-11324: The urllib3 library before...

Alibaba Cloud Linux 3 : 0040: python3 (ALINUX3-SA-2024:0040)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0040 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2007-4559: Directory traversal...

Alibaba Cloud Linux 3 : 0053: python3 (ALINUX3-SA-2023:0053)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2023:0053 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-10735: A flaw was found in python...