Количество 60
Количество 60
GHSA-q98g-hxg3-268c
There is a HIGH severity vulnerability affecting the CPython "zipfile" module. When iterating over names of entries in a zip archive (for example, methods of "zipfile.ZipFile" like "namelist()", "iterdir()", "extractall()", etc) the process can be put into an infinite loop with a maliciously crafted zip archive. This defect applies when reading only metadata or extracting the contents of the zip archive. Programs that are not handling user-controlled zip archives are not affected.
ELSA-2024-9371
ELSA-2024-9371: python3.9 security update (MODERATE)
BDU:2024-06863
Уязвимость модуля zipfile интерпретатора языка программирования Python, позволяющая нарушителю вызвать отказ в обслуживании
SUSE-SU-2024:2959-1
Security update for python3
SUSE-SU-2024:2414-1
Security update for python310
SUSE-SU-2024:2254-1
Security update for python310
GHSA-mh6q-v4mp-2cc7
The “ipaddress” module contained incorrect information about whether certain IPv4 and IPv6 addresses were designated as “globally reachable” or “private”. This affected the is_private and is_global properties of the ipaddress.IPv4Address, ipaddress.IPv4Network, ipaddress.IPv6Address, and ipaddress.IPv6Network classes, where values wouldn’t be returned in accordance with the latest information from the IANA Special-Purpose Address Registries. CPython 3.12.4 and 3.13.0a6 contain updated information from these registries and thus have the intended behavior.
ELSA-2024-4779
ELSA-2024-4779: python3 security update (LOW)
ELSA-2024-4766
ELSA-2024-4766: python3 security update (LOW)
BDU:2024-05196
Уязвимость классов ipaddress.IPv4Address, ipaddress.IPv4Network, ipaddress.IPv6Address и ipaddress.IPv6Network модуля ipaddress интерпретатора языка программирования Python (CPython), позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
ELSA-2024-9192
ELSA-2024-9192: python3.11 security update (MODERATE)
SUSE-SU-2024:2280-1
Security update for python39
SUSE-SU-2024:2274-1
Security update for python39
ROS-20240917-08
Уязвимость python3
SUSE-SU-2024:3427-1
Security update for python311
SUSE-SU-2024:3418-1
Security update for python311
SUSE-SU-2024:3411-1
Security update for python39
SUSE-SU-2024:3357-1
Security update for python310
SUSE-SU-2024:2572-1
Security update for python312
SUSE-SU-2024:2479-1
Security update for python3
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-q98g-hxg3-268c There is a HIGH severity vulnerability affecting the CPython "zipfile" module. When iterating over names of entries in a zip archive (for example, methods of "zipfile.ZipFile" like "namelist()", "iterdir()", "extractall()", etc) the process can be put into an infinite loop with a maliciously crafted zip archive. This defect applies when reading only metadata or extracting the contents of the zip archive. Programs that are not handling user-controlled zip archives are not affected. | CVSS3: 7.5 | 0% Низкий | 12 месяцев назад |
| ELSA-2024-9371 ELSA-2024-9371: python3.9 security update (MODERATE) | 9 месяцев назад | ||
 | BDU:2024-06863 Уязвимость модуля zipfile интерпретатора языка программирования Python, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 5.3 | 0% Низкий | 12 месяцев назад |
 | SUSE-SU-2024:2959-1 Security update for python3 | 1% Низкий | 12 месяцев назад | |
| SUSE-SU-2024:2414-1 Security update for python310 | 1% Низкий | около 1 года назад | |
| SUSE-SU-2024:2254-1 Security update for python310 | 1% Низкий | около 1 года назад | |
| GHSA-mh6q-v4mp-2cc7 The “ipaddress” module contained incorrect information about whether certain IPv4 and IPv6 addresses were designated as “globally reachable” or “private”. This affected the is_private and is_global properties of the ipaddress.IPv4Address, ipaddress.IPv4Network, ipaddress.IPv6Address, and ipaddress.IPv6Network classes, where values wouldn’t be returned in accordance with the latest information from the IANA Special-Purpose Address Registries. CPython 3.12.4 and 3.13.0a6 contain updated information from these registries and thus have the intended behavior. | CVSS3: 7.5 | 1% Низкий | около 1 года назад |
| ELSA-2024-4779 ELSA-2024-4779: python3 security update (LOW) | около 1 года назад | ||
| ELSA-2024-4766 ELSA-2024-4766: python3 security update (LOW) | около 1 года назад | ||
| BDU:2024-05196 Уязвимость классов ipaddress.IPv4Address, ipaddress.IPv4Network, ipaddress.IPv6Address и ipaddress.IPv6Network модуля ipaddress интерпретатора языка программирования Python (CPython), позволяющая нарушителю получить несанкционированный доступ к защищаемой информации | CVSS3: 3.7 | 1% Низкий | больше 1 года назад |
| ELSA-2024-9192 ELSA-2024-9192: python3.11 security update (MODERATE) | 9 месяцев назад | ||
| SUSE-SU-2024:2280-1 Security update for python39 | около 1 года назад | ||
| SUSE-SU-2024:2274-1 Security update for python39 | около 1 года назад | ||
 | ROS-20240917-08 Уязвимость python3 | CVSS3: 3.7 | 1% Низкий | 11 месяцев назад |
| SUSE-SU-2024:3427-1 Security update for python311 | 11 месяцев назад | ||
| SUSE-SU-2024:3418-1 Security update for python311 | 11 месяцев назад | ||
| SUSE-SU-2024:3411-1 Security update for python39 | 11 месяцев назад | ||
| SUSE-SU-2024:3357-1 Security update for python310 | 11 месяцев назад | ||
| SUSE-SU-2024:2572-1 Security update for python312 | около 1 года назад | ||
| SUSE-SU-2024:2479-1 Security update for python3 | около 1 года назад |
Уязвимостей на страницу