Lucene search
K

5 matches found

OSV
OSV
added 2026/01/22 2:12 p.m.1 views

SUSE-SU-2026:20125-1 Security update for python313

This update for python313 fixes the following issues: - Update to 3.13.11: - Security - CVE-2025-12084: cpython: Fixed quadratic algorithm in xml.dom.minidom leading to denial of service bsc1254997 - CVE-2025-13836: Fixed default Content-Lenght read amount from HTTP response bsc1254400 -...

7.5CVSS6.3AI score0.01525EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2025/12/22 4:40 p.m.9 views

cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked

A zip file handling flaw has been discovered in the python standard library zipfile module. The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record wou...

4.3CVSS6.2AI score0.00353EPSS
Exploits0References9
OSV
OSV
added 2025/12/15 10:33 a.m.3 views

SUSE-SU-2025:4257-2 Security update for python311

This update for python311 fixes the following issues: Update to 3.11.14: - CVE-2025-6075: Fixed simple quadratic complexity vulnerabilities of os.path.expandvars bsc1252974 - CVE-2025-8291: Fixed validity of the ZIP64 End of Central Directory EOCD not checked by the 'zipfile' module bsc1251305...

5.5CVSS5.7AI score0.00353EPSS
Exploits0References5
OSV
OSV
added 2025/12/11 3:12 p.m.4 views

SUSE-SU-2025:4368-1 Security update for python3

This update for python3 fixes the following issues: - CVE-2025-6075: quadratic complexity in os.path.expandvars can lead to performance degradation when values passed to it are user-controlled bsc1252974. - CVE-2025-8291: lack of validity checks on the ZIP64 End of Central Directory EOCD record...

5.5CVSS6.6AI score0.00353EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2025/11/26 1:43 p.m.5 views

Security update for python311

This update for python311 fixes the following issues: Update to 3.11.14: CVE-2025-6075: Fixed simple quadratic complexity vulnerabilities of os.path.expandvars bsc1252974 CVE-2025-8291: Fixed validity of the ZIP64 End of Central Directory EOCD not checked by the 'zipfile' module bsc1251305 Patch...

4.8CVSS6.9AI score0.00353EPSS
Exploits0References8
Rows per page
Query Builder