OSV - Open Source Vulnerabilities

BIT-python-2026-8328

Bitnami/python

FTP PASV SSRF, ftpcp() does not use actual peer address, trusts server-supplied PASV host address

20 May

Fix available
Severity - 5.9 (Medium)

BIT-python-min-2026-8328

Bitnami/python-min

FTP PASV SSRF, ftpcp() does not use actual peer address, trusts server-supplied PASV host address

20 May

Fix available
Severity - 5.9 (Medium)

BIT-python-2026-4224

Bitnami/python

Stack overflow parsing XML with deeply nested DTD content models

20 May

Fix available
Severity - 6.0 (Medium)

BIT-python-min-2026-4224

Bitnami/python-min

Stack overflow parsing XML with deeply nested DTD content models

20 May

Fix available
Severity - 6.0 (Medium)

BIT-libpython-2026-8328

Bitnami/libpython

FTP PASV SSRF, ftpcp() does not use actual peer address, trusts server-supplied PASV host address

20 May

Fix available
Severity - 5.9 (Medium)

BIT-libpython-2026-4224

Bitnami/libpython

Stack overflow parsing XML with deeply nested DTD content models

20 May

Fix available
Severity - 6.0 (Medium)

BIT-python-min-2026-7210

Bitnami/python-min

The expat and elementtree parsers use insufficient entropy for XML hash-flooding protection

15 May

No fix available
Severity - 6.3 (Medium)

BIT-python-2026-7210

Bitnami/python

The expat and elementtree parsers use insufficient entropy for XML hash-flooding protection

15 May

No fix available
Severity - 6.3 (Medium)

BIT-libpython-2026-7210

Bitnami/libpython

The expat and elementtree parsers use insufficient entropy for XML hash-flooding protection

15 May

No fix available
Severity - 6.3 (Medium)

PSF-0000-CVE-2026-8328

github.com/python/cpython

See record for full details

13 May

No fix available

PSF-2026-24

github.com/python/cpython

See record for full details

13 May

No fix available

BIT-libpython-2025-13836

Bitnami/libpython

Excessive read buffering DoS in http.client

11 May

Fix available
Severity - 6.3 (Medium)

BIT-libpython-2025-12084

Bitnami/libpython

Quadratic complexity in node ID cache clearing

11 May

Fix available
Severity - 6.3 (Medium)

PSF-2026-23

github.com/python/cpython

See record for full details

11 May

No fix available

BIT-python-2025-13836

Bitnami/python

Excessive read buffering DoS in http.client

08 May

Fix available
Severity - 6.3 (Medium)

BIT-python-min-2025-13836

Bitnami/python-min

Excessive read buffering DoS in http.client

08 May

Fix available
Severity - 6.3 (Medium)