58134 matches found
SUSE-SU-2026:20423-1 Security update for python-pip
This update for python-pip fixes the following issues: - CVE-2026-1703: files may be extracted outside the installation directory when installing and extracting maliciously crafted wheel archives bsc1257599...
OPENSUSE-SU-2026:20202-1 Security update for python-pip
This update for python-pip fixes the following issues: - CVE-2026-1703: files may be extracted outside the installation directory when installing and extracting maliciously crafted wheel archives bsc1257599...
CVE-2025-69872
DiskCache python-diskcache through 5.6.3 uses Python pickle for serialization by default. An attacker with write access to the cache directory can achieve arbitrary code execution when a victim application reads from the cache...
a-simple-llm-kit (>=0.3.0 <=0.4.2), a62-emotion (>=0.9.2 <=0.11.4) +3482 more potentially affected by CVE-2025-69872 via diskcache (>=2.4.1 <=5.6.3)
diskcache PYPI version =2.4.1, =0.3.0, =0.9.2, =0.1.0, =0.2.1, =0.1.1.dev1, =0.3.4, =0.1.1, =0.3.3, =0.0.2, =20260210.0.0, =20260212.0.0 and more Source cves: CVE-2025-69872 Source advisory: SNYK:PYTHON-DISKCACHE-15268422...
USN-8027-1: Python-Multipart vulnerabilities
It was discovered that Python-Multipart incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause Python-Multipart to consume excessive resources, leading to a regular expression denial of service. This issue only affected Ubuntu 22.04 LTS. CVE-2024-24762...
USN-8027-1 python-multipart vulnerabilities
It was discovered that Python-Multipart incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause Python-Multipart to consume excessive resources, leading to a regular expression denial of service. This issue only affected Ubuntu 22.04 LTS. CVE-2024-24762...
MAL-2026-860 Malicious code in osopackagepy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 999886fcc5bada14ab742719f34eef0d929a1319b6011060b7e13e1598c292f0 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
The game is over: when “free” comes at too high a price. What we know about RenEngine
We often describe cases of malware distribution under the guise of game cheats and pirated software. Sometimes such methods are used to spread complex malware that employs advanced techniques and sophisticated infection chains. In February 2026, researchers from Howler Cell announced the discover...
Malicious code in python-files-mod (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3f9a5cad398dbfcea1ea0ed1a7b20c678a67941581a4562aa92703ac86ee421a Disguised as file system manipulation library, the package hides an obfuscated code to communicate with a Telegram channel. Though the usage is not known at th...
MAL-2026-851 Malicious code in python-files-mod (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3f9a5cad398dbfcea1ea0ed1a7b20c678a67941581a4562aa92703ac86ee421a Disguised as file system manipulation library, the package hides an obfuscated code to communicate with a Telegram channel. Though the usage is not known at th...
Malicious code in ci-metadata-python-logging (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b2ec44231abe88a238f040c6ed291532c456a0f07e91b5966a76b5262526672d Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2024-12374 Malicious code in ci-metadata-python-logging (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b2ec44231abe88a238f040c6ed291532c456a0f07e91b5966a76b5262526672d Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
RHSA-2026:2419 Red Hat Security Advisory: python3.12 security update
Bulletin has no description...
RHSA-2026:2393 Red Hat Security Advisory: python3.9 security update
Bulletin has no description...
RHSA-2026:1957 Red Hat Security Advisory: python3.12-urllib3 security update
Bulletin has no description...
RHSA-2026:1729 Red Hat Security Advisory: python-urllib3 security update
Bulletin has no description...
RHSA-2026:1726 Red Hat Security Advisory: python-urllib3 security update
Bulletin has no description...
RHSA-2026:1712 Red Hat Security Advisory: python3.11-urllib3 security update
Bulletin has no description...
RHSA-2026:1704 Red Hat Security Advisory: python3.11-urllib3 security update
Bulletin has no description...
RHSA-2026:1693 Red Hat Security Advisory: python-urllib3 security update
Bulletin has no description...