Fedora 42 : python-wheel (2026-28a177c207)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-28a177c207 advisory. - Security fix for CVE-2026-24049 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

Fedora 43 : mingw-python-wheel (2026-3d31544140)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-3d31544140 advisory. Update to 0.46.3, fixes CVE-2026-24049. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

Fedora 43 : python-wheel (2026-ce64e86fd8)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-ce64e86fd8 advisory. - Security fix for CVE-2026-24049 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

SUSE SLES15 / openSUSE 15 Security Update : python (SUSE-SU-2026:0337-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0337-1 advisory. - Modified CVE-2025-6075 fix to not use re.ASCII flag not available in Python 2.7 bsc1257064. Tenable has extracted the preceding...

Fedora 42 : mingw-python-wheel (2026-78d626bfca)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-78d626bfca advisory. Update to 0.46.3, fixes CVE-2026-24049. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

EulerOS Virtualization 2.10.1 : python-jinja2 (EulerOS-SA-2026-1142)

According to the versions of the python-jinja2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with...

Debian dsa-6117 : python-django-doc - security update

The remote Debian 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6117 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6117-1 [email protected] https://www.debian.org/securit...

DSA-6117-1 python-django - security update

Bulletin has no description...

Fedora 42 : mingw-python-urllib3 (2026-2b6dfd7c83)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-2b6dfd7c83 advisory. Update to 2.6.3, fixes CVE-2025-66471, CVE-2025-21441, CVE-2025-66418. Tenable has extracted the preceding description block directly from the Fedor...

Fedora 43 : mingw-python-urllib3 (2026-8b7270b473)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-8b7270b473 advisory. Update to 2.6.3, fixes CVE-2025-66471, CVE-2025-21441, CVE-2025-66418. Tenable has extracted the preceding description block directly from the Fedor...

SUSE SLED15 / SLES15 Security Update : python-filelock (SUSE-SU-2026:0335-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:0335-1 advisory. - CVE-2026-22701: Fixed TOCTOU race condition in SoftFileLock implementation of he filelock package bsc1256457 Tenable...

python311-pypdf-6.6.2-1.1 on GA media (moderate)

python311-pypdf-6.6.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10116-1 Rating: moderate Cross-References: CVE-2026-24688 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

Malicious code in fastpi (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2928970260fda87aaa57272b8042ae1a9661ad1a1bdeec1e73903e84ce3354cd Malicious copy of the legitimate FastAPI. The modification loads code encrypted in one of the attached files. The final, highly obfuscated code is most likely...

CVE-2026-25153 @backstage/plugin-techdocs-node vulnerable to arbitrary code execution via MkDocs hooks

Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides common node.js functionalities for TechDocs. In versions of @backstage/plugin-techdocs-node prior to 1.13.11 and 1.14.1, when TechDocs is configured with runIn: local, a malicious actor who...

SUSE-SU-2026:20216-1 Security update for python-filelock

This update for python-filelock fixes the following issues: - CVE-2025-68146: TOCTOU race condition may allow local attackers to corrupt or truncate arbitrary user files bsc1255244. - CVE-2026-22701: TOCTOU race condition in the SoftFileLock implementation bsc1256457...

OPENSUSE-SU-2026:20144-1 Security update for python-filelock

This update for python-filelock fixes the following issues: - CVE-2025-68146: TOCTOU race condition may allow local attackers to corrupt or truncate arbitrary user files bsc1255244. - CVE-2026-22701: TOCTOU race condition in the SoftFileLock implementation bsc1256457...

CLEANSTART-2026-MB75553 vulnerability was found in Avahi, where a reachable assertion exists in avahi_dns_packet_append_record

Multiple security vulnerabilities affect the playwright-python package. A vulnerability was found in Avahi, where a reachable assertion exists in avahidnspacketappendrecord. See references for individual vulnerability details...

nanshihui__PocCollect.e13e1379

PocCollect !Build Statushttp://nanshihui.github.io/public...

OESA-2026-1262 python-pyasn1 security update

Abstract Syntax Notation One ASN.1 is a technology for exchanging structured data in a universally understood, hardware agnostic way. Many industrial, security and telephony applications heavily rely on ASN.1. The pyasn1 library implements ASN.1 support in pure-Python. Security Fixes: pyasn1 is a...

OESA-2026-1253 python-pip security update

pip is the package installer for Python. You can use pip to install packages from the Python Package Index and other indexes. %global bashcompdir %b=$pkg-config --variable=completionsdir bash-completion 2/dev/null; echo $b:-/bashcompletion.d Name: python-pip Version: 23.3.1 Release: 6 Summary: A...