openSUSE 16 Security Update : python-Pillow (openSUSE-SU-2026:20458-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20458-1 advisory. - CVE-2026-25990: Fixed an out-of-bounds write when opening a specially crafted PSD image. bsc1258125 Tenable has extracted the preceding description...

Important: python3-tornado

Issue Overview: Tornado is a Python web framework and asynchronous networking library. In versions of Tornado prior to 6.5.5, the only limit on the number of parts in multipart/form-data is the maxbodysize setting default 100MB. Since parsing occurs synchronously on the main thread, this creates...

Fedora 43 : python3.6 (2026-8ba3403ff7)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-8ba3403ff7 advisory. Security fix for CVE-2025-12084 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

Fedora 43 : python3.10 (2026-41f576f846)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-41f576f846 advisory. Update to 3.10.20 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

Important: python-pip

Issue Overview: urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression...

Fedora 43 : python3.11 (2026-36e1e6958c)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-36e1e6958c advisory. Security fix for CVE-2025-13836 ---- Security fix for CVE-2025-12084 Tenable has extracted the preceding description block directly from the Fedora...

MiracleLinux 8 : python-lxml-4.2.3-3.el8 (AXSA:2021-2726:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-2726:02 advisory. python-lxml: Missing input sanitization for formaction HTML5 attributes may lead to XSS CVE-2021-28957 Tenable has extracted the preceding description block...

MiracleLinux 7 : python-2.7.5-94.0.1.el7.AXS7 (AXSA:2023-6577:43)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6577:43 advisory. python: TLS handshake bypass CVE-2023-40217 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

Fedora 41 : python-requests (2025-d8f9b425fa)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-d8f9b425fa advisory. - Update to 2.32.4 - Security fix for CVE-2024-47081: .netrc credentials leak via malicious URLs Tenable has extracted the preceding description block direct...

AlmaLinux 9 : python-setuptools (ALSA-2025:10407)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:10407 advisory. setuptools: Path Traversal Vulnerability in setuptools PackageIndex CVE-2025-47273 Tenable has extracted the preceding description block directly from the AlmaLin...

python311-Django4-4.2.22-1.1 on GA media (moderate)

python311-Django4-4.2.22-1.1 on GA media Announcement ID: openSUSE-SU-2025:15268-1 Rating: moderate Cross-References: CVE-2025-48432 CVSS scores: CVE-2025-48432 SUSE : 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N CVE-2025-48432 SUSE : 6.9...

AlmaLinux 9 : python-requests (ALSA-2025:7049)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:7049 advisory. requests: subsequent requests to the same host ignore cert verification CVE-2024-35195 Tenable has extracted the preceding description block directly from the...

python-tornado security update

4.2.1-5.0.1 - Fixed CVE-2025-47287 Raise errors instead of logging Orabug: 38049949...

[SECURITY] Fedora 41 Update: python3.13-3.13.5-1.fc41

Python 3.13 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries...

[SECURITY] Fedora 42 Update: python3.13-3.13.5-1.fc42

Python 3.13 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries...

[SECURITY] Fedora 42 Update: python-pycares-4.9.0-1.fc42

pycares is a Python module which provides an interface to c-ares. c-ares is a C library that performs DNS requests and name resolutions asynchronously...

Fedora 41 : python-setuptools (2025-1746085e78)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-1746085e78 advisory. Security fix for CVE-2025-47273 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

Fedora 41 : python3.10 (2025-76b69d1931)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-76b69d1931 advisory. Update to 3.10.18. Security content in this release - gh-135034: CVE 2024-12718 CVE 2025-4138 CVE 2025-4330 CVE 2025-4435 CVE 2025-4517 Fixes multiple issues...

[SECURITY] Fedora 42 Update: python-pyqt6-6.9.0-3.fc42

PyQt6 is Python bindings for Qt6...

SUSE-SU-2025:01818-1 Security update for python-cryptography

This update for python-cryptography fixes the following issues: - CVE-2025-3416: openssl: use-after-free in Md::fetch and Cipher::fetch when Some... value passed as properties argument to either function bsc1242631...