Vulnerability Library

search
ID
Packages
Summary
Affected versions
Published
Fix
PSF-2023-5
  • github.com/python/cpython
 XML External Entity issue in plistlib module
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
 2023-08-24T00:00:00Z Fix available
PSF-2023-6
  • github.com/python/cpython
 hmac.compare_digest() accumulator not constant-time
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
 2023-08-24T00:00:00Z Fix available
PSF-2023-8
  • github.com/python/cpython
 Bypass TLS handshake on closed sockets
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
 2023-08-24T00:00:00Z Fix available
PSF-2023-9
  • github.com/python/cpython
 os.path.normpath() truncates on null bytes
  • v3.11.0
  • v3.11.0a1
  • v3.11.0a2
  • v3.11.0a3
  • v3.11.0a4
  • v3.11.0a5
  • v3.11.0a6
  • ...
 2023-08-24T00:00:00Z Fix available
PSF-2023-10
  • github.com/python/cpython
 DoS when reading malformed Apple Property List files in binary format
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
 2023-08-22T00:00:00Z Fix available
PSF-2023-11
  • github.com/python/cpython
 Use-after-free in heappushpop() of heapq module
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
 2023-08-22T00:00:00Z Fix available
PSF-2023-7
  • github.com/python/cpython
 Reference count issue in _asyncio._swap_current_task()
  • v3.12.0b1
  • v3.12.0b2
  • v3.12.0b3
 2023-08-15T00:00:00Z Fix available
PSF-2023-4
  • github.com/python/cpython
 See record for full details
  • See details.
 2023-06-25T00:00:00Z No fix available
PSF-2023-3
  • github.com/python/cpython
 See record for full details
  • See details.
 2023-06-07T00:00:00Z Fix available
PSF-2023-2
  • github.com/python/cpython
 Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple
  • See details.
 2023-04-18T00:00:00Z No fix available
PSF-2023-1
  • github.com/python/cpython
 urlparse does not correctly handle schemes
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
 2023-02-17T00:00:00Z Fix available
PSF-2022-10
  • github.com/python/cpython
 Slow IDNA decoding with large strings
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
 2022-11-09T00:00:00Z Fix available
PSF-2022-9
  • github.com/python/cpython
 Linux specific local privilege escalation via the multiprocessing forkserver start method
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
 2022-11-06T00:00:00Z Fix available
PSF-2022-11
  • github.com/python/cpython
 Buffer overflow in the _sha3 module in Python 3.10 and older
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
 2022-10-21T00:00:00Z Fix available
PSF-2022-2
  • github.com/python/cpython
 Buffer overflow vulnerability in os.symlink on Windows
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
 2022-10-03T16:21:59Z Fix available
PSF-2022-4
  • github.com/python/cpython
 Prevent DoS by large str-int conversions
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
 2022-09-09T00:00:00Z Fix available
Load more...