OSV - Open Source Vulnerabilities

GHSA-2qfp-q593-8484

PyPI/brotli
PyPI/scrapy

Scrapy is vulnerable to a denial of service (DoS) attack due to flaws in brotli decompression implementation

31 Oct 2025

Fix available
Severity - 7.5 (High)

MAL-2025-47749

PyPI/brotli-python

Malicious code in brotli-python (PyPI)

07 Sep 2025

No fix available

GHSA-5v8v-66v8-mwm7

NuGet/Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.android-arm
NuGet/Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.android-arm64
NuGet/Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.android-x64
NuGet/Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.android-x86
NuGet/Microsoft.NETCore.App.Runtime.AOT.linux-x64.Cross.browser-wasm
... 113 more

Integer overflow in the bundled Brotli C library

24 May 2022

Fix available
Severity - 6.9 (Medium)

PYSEC-2020-29

PyPI/brotli

See record for full details

15 Sep 2020

Fix available