PT-2026-3917

Name of the Vulnerable Software and Affected Versions wheel versions 0.40.0 through 0.46.1 Description The 'wheel' package, a tool for manipulating Python wheel files, contains a flaw in the unpack function. This flaw allows for file permission modification through mishandling of file permissions...

DSA-6102-2 python-urllib3 - regression update

Bulletin has no description...

Inkscape security vulnerabilities

Inkscape is an open-source graphic editor. Versions of Inkscape prior to 1.4.3 have security vulnerabilities. This vulnerability stems from the Python interpreter bundled with Inkscape inheriting TCC permissions from the main application, which may allow local users to access files in...

Azure Linux 3.0 Security Update: python-tensorboard (CVE-2024-43788)

The version of python-tensorboard installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43788 advisory. - Webpack is a module bundler. Its main purpose is to bundle JavaScript files for usage in a...

SUSE: Security Advisory (SUSE-SU-2026:20077-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Azure Linux 3.0 Security Update: python-tornado (CVE-2023-28370)

The version of python-tornado installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-28370 advisory. - Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated...

PT-2026-3942

MacOS version of Inkscape bundles a Python interpreter that inherits the Transparency, Consent, and Control TCC permissions granted by the user to the main application bundle. An attacker with local user access can invoke this interpreter with arbitrary commands or scripts, leveraging the...

Azure Linux 3.0 Security Update: python-zipp / tensorflow (CVE-2024-5569)

The version of python-zipp / tensorflow installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-5569 advisory. - A Denial of Service DoS vulnerability exists in the jaraco/zipp library, affecting all...

openSUSE 16 Security Update : python-weasyprint (openSUSE-SU-2026:20069-1)

The remote openSUSE 16 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2026:20069-1 advisory. Changes in python-weasyprint: - CVE-2025-68616: Fixed a server-side request forgery in default fetcher boo1256936. Tenable has extracted the preceding...

Azure Linux 3.0 Security Update: python-waitress (CVE-2022-31015)

The version of python-waitress installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-31015 advisory. - Waitress is a Web Server Gateway Interface server for Python 2 and 3. Waitress versions 2.1.0 and...

Azure Linux 3.0 Security Update: python-tensorboard (CVE-2022-46175)

The version of python-tensorboard installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-46175 advisory. - JSON5 is an extension to the popular JSON file format that aims to be easier to write and mainta...

Azure Linux 3.0 Security Update: python-tensorboard / pytorch (CVE-2021-22569)

The version of python-tensorboard / pytorch installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-22569 advisory. - An issue in protobuf-java allowed the interleaving of...

python311-pyasn1-0.6.2-1.1 on GA media (moderate)

python311-pyasn1-0.6.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10078-1 Rating: moderate Cross-References: CVE-2026-2141 CVE-2026-23490 CVSS scores: CVE-2026-23490 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Tumbleweed An update that solves 2...

Azure Linux 3.0 Security Update: python3 (CVE-2024-3219)

The version of python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-3219 advisory. - The socket module provides a pure-Python fallback to the socket.socketpair function for platforms that don't...

Azure Linux 3.0 Security Update: python-waitress (CVE-2024-49769)

The version of python-waitress installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49769 advisory. - Waitress is a Web Server Gateway Interface server for Python 2 and 3. When a remote client closes t...

Azure Linux 3.0 Security Update: python-waitress (CVE-2022-24761)

The version of python-waitress installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-24761 advisory. - Waitress is a Web Server Gateway Interface server for Python 2 and 3. When using Waitress versions...

Azure Linux 3.0 Security Update: python-tensorboard (CVE-2019-16276)

The version of python-tensorboard installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-16276 advisory. - Go before 1.12.10 and 1.13.x before 1.13.1 allow HTTP Request Smuggling. CVE-2019-16276 Note tha...

ROS-20260122-73-0010

Vulnerability in python-django related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

ROS-20260122-73-0004

Vulnerability in python-sentry-sdk related to a flaw in the error reporting mechanism. Exploitation of the vulnerability may allow a remote intruder to gain unauthorized access to protected information...

ROS-20260122-73-0006

Vulnerability in python-sentry-sdk related to bypassing the authentication procedure by using an alternate path or channel. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions...