Vulnerability Library

ID
Packages
Summary
Affected versions
Published
Fix
PSF-2024-4
  • github.com/python/cpython
See record for full details
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
2024-06-17T15:09:40.896Z Fix available
PSF-2024-5
  • github.com/python/cpython
See record for full details
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
2024-06-17T15:05:58.827Z Fix available
CVE-2024-35195
  • github.com/psf/requests
See record for full details
  • 2.0
  • v0.10.0
  • v0.10.1
  • v0.10.2
  • v0.10.3
  • v0.10.4
  • v0.10.5
  • ...
2024-05-20T21:15:09Z Fix available
PSF-2024-3
  • github.com/python/cpython
See record for full details
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
2024-05-07T21:02:55.284Z Fix available
PSF-2024-1
  • github.com/python/cpython
See record for full details
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
2024-03-19T15:44:28.989Z Fix available
PSF-2024-2
  • github.com/python/cpython
See record for full details
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
2024-03-19T15:12:07.789Z Fix available
CVE-2024-21503
  • github.com/psf/black
See record for full details
  • 18.3a0
  • 18.3a1
  • 18.3a2
  • 18.3a3
  • 18.3a4
  • 18.4a0
  • 18.4a1
  • ...
2024-03-19T05:15:09Z Fix available
PYSEC-2024-48
  • github.com/psf/black
  • PyPI/black
See record for full details
  • 18.3a0
  • 18.3a1
  • 18.3a2
  • 18.3a3
  • 18.3a4
  • 18.4a0
  • 18.4a1
  • ...
2024-03-19T05:15:00Z Fix available
PSF-2023-12
  • github.com/python/cpython
Groups not dropped before running subprocess when using empty 'extra_groups' parameter
  • v3.12.0
  • v3.12.0a5
  • v3.12.0a6
  • v3.12.0a7
  • v3.12.0b1
  • v3.12.0b2
  • v3.12.0b3
  • ...
2023-12-08T18:20:49.583Z Fix available
PSF-CVE-2023-6507
  • github.com/python/cpython
Groups not dropped before running subprocess when using empty 'extra_groups' parameter
  • v3.12.0
  • v3.12.0a5
  • v3.12.0a6
  • v3.12.0a7
  • v3.12.0b1
  • v3.12.0b2
  • v3.12.0b3
  • ...
2023-12-08T18:20:49.583Z Fix available
PSF-2023-5
  • github.com/python/cpython
XML External Entity issue in plistlib module
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
2023-08-24T00:00:00Z Fix available
PSF-2023-6
  • github.com/python/cpython
hmac.compare_digest() accumulator not constant-time
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
2023-08-24T00:00:00Z Fix available
PSF-2023-8
  • github.com/python/cpython
Bypass TLS handshake on closed sockets
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
2023-08-24T00:00:00Z Fix available
PSF-2023-9
  • github.com/python/cpython
os.path.normpath() truncates on null bytes
  • v3.11.0
  • v3.11.0a1
  • v3.11.0a2
  • v3.11.0a3
  • v3.11.0a4
  • v3.11.0a5
  • v3.11.0a6
  • ...
2023-08-24T00:00:00Z Fix available
PSF-2023-10
  • github.com/python/cpython
DoS when reading malformed Apple Property List files in binary format
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
2023-08-22T00:00:00Z Fix available
PSF-2023-11
  • github.com/python/cpython
Use-after-free in heappushpop() of heapq module
  • 2.5
  • 3.2
  • v0.9.8
  • v0.9.9
  • v1.0.1
  • v1.0.2
  • v1.1
  • ...
2023-08-22T00:00:00Z Fix available