[SECURITY] Fedora 41 Update: vyper-0.4.1-4.fc41

Pythonic Smart Contract Language for the EVM...

[SECURITY] Fedora 42 Update: vyper-0.4.1-4.fc42

Pythonic Smart Contract Language for the EVM...

[SECURITY] Fedora 40 Update: vyper-0.4.1-1.fc40

Pythonic Smart Contract Language for the EVM...

[SECURITY] Fedora 41 Update: vyper-0.4.1-1.fc41

Pythonic Smart Contract Language for the EVM...

Vyper 安全漏洞

Vyper is a Pythonic smart contract language for EVM open sourced by vyperlang. A security vulnerability exists in Vyper 0.4.0 and earlier versions, which stems from the compiler failing to check the success flag of a call when using pre-compiled EcRecover and Identity, which could lead to incorre...

PT-2024-24741

Name of the Vulnerable Software and Affected Versions Vyper versions prior to 0.3.0 Description The issue concerns the default function not respecting the @nonreentrancy decorator, and the lock not being emitted. This is a known bug with low impact, as using a lock on a default function is a...

2vyper (=0.3.0), ape-dasy (=0.1.0) +28 more potentially affected by CVE-2024-24560 via vyper (>=0.1.0b12 <=0.3.9)

vyper PYPI version =0.1.0b12, =0.7.1, =0.1.0, =0.0.0, =0.0.0, =0.0.5, =0.1.0, =0.1.0, =0.7.2, =0.1.10.0, =1.0.1, =0.1.0, =1.4.0, =1.20.6 and more Source cves: CVE-2024-24560 Source advisory: OSV:GHSA-GP3W-2V2M-P686...

PYSEC-2023-305

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine EVM. Starting in version 0.2.9 and prior to version 0.3.10, locks of the type @nonreentrant"" or @nonreentrant'' do not produce reentrancy checks at runtime. This issue is fixed in version 0.3.10. As a workaround, ensure...

2vyper (=0.3.0), ape-vyper (>=0.7.1 <=0.8.3) +23 more potentially affected by CVE-2022-24787 via vyper (>=0.1.0b12 <=0.3.10)

vyper PYPI version =0.1.0b12, =0.7.1, =0.1.0, =0.0.0, =0.0.0, =0.0.5, =0.1.0, =0.1.0, =0.1.10.0, =1.0.1, =0.1.0, =1.4.0, =0.2.1, =0.1.3, =0.1.10 and more Source cves: CVE-2022-24787 Source advisory: OSV:PYSEC-2022-196...

PT-2022-16879 · Vyper · Vyper

Name of the Vulnerable Software and Affected Versions: Vyper versions 0.3.1 and prior Description: The issue arises from the comparison of bytestrings, which can yield incorrect results due to the presence of dirty bytes or the lack of length comparison. Specifically, two bytestrings can compare ...