Root has patched CVE-2026-31899 in the rootio-cairosvg package for Root:PyPI. Multiple fixed versions available.
{ "distro": "pypi", "source": "Root", "distro_version": "", "severity": "HIGH" }
"root.io.1"
1.0
"https://api.root.io/external/osv/ROOT-APP-PYPI-CVE-2026-31899.json"
"2.7.1"
true
[ "2.7.1+root.io.1" ]
""
"2.7.1+aikido.1"
[ "2.7.1+aikido.1" ]