Root has patched CVE-2024-21503 in the rootio-black package for Root:PyPI. Multiple fixed versions available.
{
"distro": "pypi",
"severity": "MEDIUM",
"source": "Root",
"distro_version": ""
}11.0
"root.io.2"
true
[
"23.12.1+root.io.2",
"23.10.0+root.io.2",
"23.3.0+root.io.2",
"23.1a1+root.io.2",
"23.9.1+root.io.2",
"23.12.0+root.io.2",
"23.1.0+root.io.2",
"23.11.0+root.io.2",
"23.7.0+root.io.2",
"23.10.1+root.io.2",
"23.9.0+root.io.2"
]
"23.9.0"
"https://api.root.io/external/osv/ROOT-APP-PYPI-CVE-2024-21503.json"