PT-2026-23450

Name of the Vulnerable Software and Affected Versions Python-Markdown versions prior to 3.8.1 Description A flaw exists in Python-Markdown version 3.8 where improperly formed HTML-like sequences can trigger an unhandled AssertionError within the html.parser.HTMLParser during Markdown processing...

PT-2026-23609

Name of the Vulnerable Software and Affected Versions mcp-memory-service versions prior to 10.21.0 Description The /api/health/detailed endpoint in mcp-memory-service exposes sensitive system information, including OS version, Python version, CPU count, memory details, disk usage, and the full...

TencentOS Server 4: python-wheel (TSSA-2026:0103)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0103 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

OPENSUSE-SU-2026:10292-1 python311-Django-5.2.12-1.1 on GA media

These are all security issues fixed in the python311-Django-5.2.12-1.1 package on the GA media of openSUSE Tumbleweed...

Adobe SDK 1.7.1 2410 Robust DNG File Generator / Stress Tester

This Python script generates a structurally valid DNG Digital Negative file containing an embedded JPEG XL JXL codestream...

Adobe SDK 1.7.1 2410 Overflow Analysis / Fuzzing Model

This Python script implements a comprehensive framework to model, detect, and analyze integer overflows in 32-bit arithmetic, particularly in the context of image memory allocation. The framework combines formal methods, stepwise arithmetic, symbolic execution, SMT-style constraint solving,...

CVE-2025-69534

The CVE-2025-69534 affects Python-Markdown 3.8, where malformed HTML-like sequences trigger an unhandled AssertionError in html.parser.HTMLParser during Markdown parsing. This can produce a remote, unauthenticated Denial of Service for applications rendering untrusted Markdown, with potential inf...

openSUSE 16 Security Update : python-azure-core (openSUSE-SU-2026:20292-1)

The remote openSUSE 16 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2026:20292-1 advisory. - CVE-2026-21226: Fixed deserialization of untrusted data which may allow an authorized attacker to execute code over a network. bsc1257703 Tenable has...

Linux Distros Unpatched Vulnerability : CVE-2026-27932

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - joserfc is a Python library that provides an implementation of several JSON Object Signing and Encryption JOSE standards. In 1.6.2 and earlier, a resource...

TencentOS Server 4: python-urllib3 (TSSA-2026:0112)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0112 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

Fedora 42 : python-pillow (2026-0d673fa503)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-0d673fa503 advisory. Backport fix for CVE-2026-25990. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...

Python Library Django 4.2.x < 4.2.29 / 5.2.x < 5.2.12 / 6.0.x < 6.0.3 DoS

The detected version of the Django Python package, is 4.2.x prior to 4.2.29, 5.2.x prior to 5.2.12, or 6.0.x prior to 6.0.3. It is, therefore, affected by a denial of service vulnerability as referenced by security release advisory: - An issue was discovered in 6.0 before 6.0.3, 5.2 before 5.2.12...

Fedora 43 : apt / python-apt (2026-1c47e433df)

The remote Fedora 43 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2026-1c47e433df advisory. Update to latest upstream release apt 3.1.15 and python-apt 3.1.0 ---- Update to latest upstream release apt 3.1.15, also fix build problem with previous...

OPENSUSE-SU-2026:10293-1 python311-joserfc-1.6.3-1.1 on GA media

These are all security issues fixed in the python311-joserfc-1.6.3-1.1 package on the GA media of openSUSE Tumbleweed...

python311-PyPDF2-2.11.1-5.1 on GA media (moderate)

python311-PyPDF2-2.11.1-5.1 on GA media Announcement ID: openSUSE-SU-2026:10284-1 Rating: moderate Cross-References: CVE-2026-27628 CVE-2026-27888 CVSS scores: CVE-2026-27888 SUSE : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-27888 SUSE : 6.9...

python313-Django6-6.0.3-1.1 on GA media (moderate)

python313-Django6-6.0.3-1.1 on GA media Announcement ID: openSUSE-SU-2026:10283-1 Rating: moderate Cross-References: CVE-2026-25674 CVSS scores: CVE-2026-25674 SUSE : 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2026-25674 SUSE : 6.3...

python311-Django4-4.2.29-1.1 on GA media (moderate)

python311-Django4-4.2.29-1.1 on GA media Announcement ID: openSUSE-SU-2026:10282-1 Rating: moderate Cross-References: CVE-2026-25674 CVSS scores: CVE-2026-25674 SUSE : 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2026-25674 SUSE : 6.3...

Security update for python-nltk (important)

openSUSE Security Update: Security update for python-nltk Announcement ID: openSUSE-SU-2026:0069-1 Rating: important References: 1259232 Cross-References: CVE-2026-0847 Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes one vulnerability is now available. Description: This upda...

openSUSE Security Advisory (SUSE-SU-2026:0774-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AZL-79491 CVE-2026-2297 affecting package tensorflow 2.16.1-11

The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...