SUSE-SU-2024:3879-1 Security update for python3

This update for python3 fixes the following issues: Security fixes: - CVE-2024-9287: properly quote path names provided when creating a virtual environment bsc1232241 Other fixes: - Drop .pyc files from docdir for reproducible builds bsc1230906...

Exploit for CVE-2024-9926

wordpress-jetpack-broken-access-control-exploit This is a Pyt...

Medium: python3

Issue Overview: The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which...

RHSA-2024:8490 Red Hat Security Advisory: python3 security update

Bulletin has no description...

Advisory ROSA-SA-2024-2512

Software: python3-setuptools 39.2.0 OS: rosa-server79 packageevrstring: python3-setuptools-39.2.0-10.0.3.res7 CVE-ID: CVE-2024-37891 BDU-ID: 2023-02445 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Python Packaging Authority package installation tools is related to insufficient input...

SUSE-SU-2024:3760-1 Security update for python3

This update for python3 fixes the following issues: Security fixes: - CVE-2024-9287: properly quote path names provided when creating a virtual environment bsc1232241 Other fixes: - Drop .pyc files from docdir for reproducible builds bsc1230906...

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2024-2675)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2024-2641)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian dsa-5797 : python3-twisted - security update

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5797 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5797-1 [email protected] https://www.debian.org/securit...

Photon OS 5.0: Python3 PHSA-2024-5.0-0386

An update of the python3 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-5.0-0386. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Important Photon OS Security Update - PHSA-2024-5.0-0386

Updates of 'go', 'python3' packages of Photon OS have been released...

python3-virtualbox-7.1.4-1.1 on GA media (moderate)

python3-virtualbox-7.1.4-1.1 on GA media Announcement ID: openSUSE-SU-2024:14413-1 Rating: moderate Cross-References: CVE-2024-21248 CVE-2024-21263 CVE-2024-21273 Affected Products: openSUSE Tumbleweed An update that solves 3 vulnerabilities can now be installed. Description: These are all securi...

OPENSUSE-SU-2024:14413-1 python3-virtualbox-7.1.4-1.1 on GA media

These are all security issues fixed in the python3-virtualbox-7.1.4-1.1 package on the GA media of openSUSE Tumbleweed...

Exploit for Authentication Bypass Using an Alternate Path or Channel in Connectwise Screenconnect

Mass-CVE-2024-1709 Original: https://github.com/W01fh4cker/S...

CVE-2024-8088 affecting package python3 for versions less than 3.12.3-4

CVE-2024-8088 affecting package python3 for versions less than 3.12.3-4. A patched version of the package is available...

CVE-2024-6923 affecting package python3 for versions less than 3.12.3-3

CVE-2024-6923 affecting package python3 for versions less than 3.12.3-3. A patched version of the package is available...

CVE-2024-6232 affecting package python3 for versions less than 3.12.3-4

CVE-2024-6232 affecting package python3 for versions less than 3.12.3-4. A patched version of the package is available...

Amazon Linux 2023 : python3-pip, python3-pip-wheel (ALAS2023-2024-730)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-730 advisory. urllib3 is a user-friendly HTTP client library for Python. When using urllib3's proxy support with ProxyManager, the Proxy-Authorization header is only sent to the configured proxy, as expected. However...

Amazon Linux 2023 : python3-dns, python3-dns+dnssec, python3-dns+idna (ALAS2023-2024-739)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-739 advisory. eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port...

Amazon Linux 2023 : python3-unbound, unbound, unbound-anchor (ALAS2023-2024-719)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-719 advisory. NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very large RRsets that it needs to perform name compression for. Malicious upstreams responses...