Lucene search
K

6 matches found

SUSE CVE
SUSE CVE
added 2026/05/19 2:1 a.m.8 views

SUSE CVE-2025-8194

There is a defect in the CPython “tarfile” module affecting the “TarFile” extraction and entry enumeration APIs. The tar implementation would process tar archives with negative offsets without error, resulting in an infinite loop and deadlock during the parsing of maliciously crafted tar archives...

6.5CVSS6.8AI score0.00611EPSS
Exploits0References27
OSV
OSV
added 2026/05/05 1:20 a.m.8 views

CLSA-2026-1777944042 Fix CVE(s): CVE-2025-8194, CVE-2026-4519, CVE-2026-4786

SECURITY UPDATE: tarfile DoS via negative member offsets - debian/patches/CVE-2025-8194.patch: validate that member offsets are non-negative in Lib/tarfile.py. - CVE-2025-8194 SECURITY UPDATE: webbrowser.open accepts URLs with leading dashes - debian/patches/CVE-2026-4519-CVE-2026-4786.patch:...

7.5CVSS6.8AI score0.00611EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/10/30 12:0 a.m.9 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-7.3.1.1)

The version of AOS installed on the remote host is prior to 7.3.1.1. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-7.3.1.1 advisory. - setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path...

8.8CVSS7.5AI score0.01479EPSS
Exploits7References6
Tenable Nessus
Tenable Nessus
added 2025/10/22 12:0 a.m.7 views

TencentOS Server 3: python3.12 (TSSA-2025:0795)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0795 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.5CVSS6.9AI score0.00611EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2025-8194

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a defect in the CPython tarfile module affecting the TarFile extraction and entry enumeration APIs. The tar implementation would process tar archives...

7.5CVSS6.8AI score0.00611EPSS
Exploits0References3
OSV
OSV
added 2025/07/28 7:15 p.m.8 views

AZL-65987 CVE-2025-8194 affecting package python3 for versions less than 3.12.9-4

There is a defect in the CPython “tarfile” module affecting the “TarFile” extraction and entry enumeration APIs. The tar implementation would process tar archives with negative offsets without error, resulting in an infinite loop and deadlock during the parsing of maliciously crafted tar archives...

7.5CVSS6.8AI score0.00611EPSS
Exploits0References1
Rows per page
Query Builder