ROOT-APP-PYPI-CVE-2026-45134

See a problem?
Please try reporting it to the source first.

Source

https://root.io/security/ROOT-APP-PYPI-CVE-2026-45134

Import Source

https://api.root.io/external/osv/ROOT-APP-PYPI-CVE-2026-45134.json

JSON Data

https://api.osv.dev/v1/vulns/ROOT-APP-PYPI-CVE-2026-45134

Upstream

CVE-2026-45134

Published

2026-05-21T12:25:36Z

Modified

2026-05-21T12:30:11.989817962Z

Severity

7.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N CVSS Calculator

Summary

CVE-2026-45134 in rootio-langsmith - Patched by Root

Details

Root has patched CVE-2026-45134 in the rootio-langsmith package for Root:PyPI. Multiple fixed versions available.

Database specific

{
    "severity": "HIGH",
    "distro": "pypi",
    "distro_version": "",
    "source": "Root"
}

References

Affected packages

Root:PyPI / rootio-langsmith

Package

Name: rootio-langsmith

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.7.13+root.io.2

Fixed

0.4.30+root.io.2

Fixed

0.6.0+root.io.2

Fixed

0.4.52+root.io.2

Fixed

0.7.10+root.io.2

Fixed

0.7.19+root.io.2

Fixed

0.7.27+root.io.2

Fixed

0.7.20+root.io.1

Fixed

0.7.36+root.io.1

Fixed

0.7.38+root.io.1

Fixed

0.7.3+root.io.2

Fixed

0.4.29+root.io.2

Fixed

0.7.17+root.io.3

Fixed

0.4.11+root.io.2

Fixed

0.7.37+root.io.1

Fixed

0.4.15+root.io.2

Fixed

0.4.16+root.io.2

Fixed

0.4.13+root.io.2

Fixed

0.4.17+root.io.2

Fixed

0.4.14+root.io.3

Fixed

0.4.12+root.io.2

Fixed

0.7.31+root.io.1

Fixed

0.7.29+root.io.2

Fixed

0.7.28+root.io.2

Fixed

0.6.1+root.io.2

Fixed

0.4.35+root.io.2

Fixed

0.7.16+root.io.1

Fixed

0.7.15+root.io.1

Fixed

0.7.8+root.io.1

Fixed

0.7.11+root.io.1

Fixed

0.7.7+root.io.2

Fixed

0.4.48+root.io.2

Fixed

0.7.14+root.io.1

Fixed

0.4.60+root.io.2

Fixed

0.4.51+root.io.2

Fixed

0.4.55+root.io.2

Fixed

0.4.57+root.io.2

Fixed

0.4.59+root.io.2

Fixed

0.4.53+root.io.2

Fixed

0.4.54+root.io.2

Fixed

0.4.58+root.io.2

Fixed

0.7.1+root.io.2

Fixed

0.7.2+root.io.2

Fixed

0.7.5+root.io.2

Fixed

0.7.9+root.io.1

Fixed

0.7.23+root.io.1

Fixed

0.7.26+root.io.2

Fixed

0.7.30+root.io.1

Fixed

0.7.4+root.io.2

Fixed

0.7.0+root.io.2

Fixed

0.7.12+root.io.1

Fixed

0.7.18+root.io.2

Fixed

0.4.50+root.io.2

Fixed

0.6.8+root.io.2

Fixed

0.4.56+root.io.2

Fixed

0.4.41+root.io.2

Fixed

0.4.42+root.io.2

Fixed

0.4.49+root.io.2

Fixed

0.5.2+root.io.2

Fixed

0.4.33+root.io.2

Fixed

0.4.28+root.io.2

Fixed

0.6.6+root.io.2

Fixed

0.6.3+root.io.2

Fixed

0.6.5+root.io.2

Fixed

0.6.2+root.io.2

Fixed

0.6.4+root.io.2

Fixed

0.6.7+root.io.2

Fixed

0.4.44+root.io.2

Fixed

0.4.46+root.io.2

Fixed

0.4.32+root.io.2

Fixed

0.4.36+root.io.2

Fixed

0.7.20+root.io.2

Fixed

0.7.12+root.io.2

Fixed

0.7.30+root.io.2

Fixed

0.7.23+root.io.2

Fixed

0.7.34+root.io.1

Fixed

0.7.9+root.io.2

Fixed

0.7.8+root.io.2

Fixed

0.7.14+root.io.2

Fixed

0.7.15+root.io.2

Fixed

0.7.11+root.io.2

Fixed

0.7.10+root.io.3

Fixed

0.7.13+root.io.3

Fixed

0.7.16+root.io.2

Fixed

0.4.22+root.io.2

Fixed

0.4.45+root.io.2

Fixed

0.4.27+root.io.2

Fixed

0.4.43+root.io.2

Fixed

0.4.26+root.io.2

Fixed

0.4.19+root.io.2

Fixed

0.4.18+root.io.2

Fixed

0.6.9+root.io.2

Fixed

0.4.37+root.io.2

Fixed

0.4.20+root.io.2

Fixed

0.4.39+root.io.2

Fixed

0.4.25+root.io.2

Fixed

0.4.38+root.io.2

Fixed

0.4.10+root.io.2

Fixed

0.7.22+root.io.2

Fixed

0.7.32+root.io.1

Fixed

0.4.34+root.io.2

Fixed

0.4.31+root.io.2

Fixed

0.7.33+root.io.1

Fixed

0.5.1+root.io.2

Fixed

0.4.23+root.io.2

Fixed

0.4.21+root.io.2

Fixed

0.7.6+root.io.2

Fixed

0.4.24+root.io.2

Fixed

0.4.40+root.io.2

Fixed

0.4.47+root.io.2

Fixed

0.4.9+root.io.2

Fixed

0.5.0+root.io.2

Fixed

0.7.21+root.io.2

Fixed

0.7.24+root.io.2

Fixed

0.7.25+root.io.2

Database specific

upstream_version

"0.7.25"

source

"https://api.root.io/external/osv/ROOT-APP-PYPI-CVE-2026-45134.json"

all_fixed_versions

[
    "0.7.13+root.io.2",
    "0.4.30+root.io.2",
    "0.6.0+root.io.2",
    "0.4.52+root.io.2",
    "0.7.10+root.io.2",
    "0.7.19+root.io.2",
    "0.7.27+root.io.2",
    "0.7.20+root.io.1",
    "0.7.36+root.io.1",
    "0.7.38+root.io.1",
    "0.7.3+root.io.2",
    "0.4.29+root.io.2",
    "0.7.17+root.io.3",
    "0.4.11+root.io.2",
    "0.7.37+root.io.1",
    "0.4.15+root.io.2",
    "0.4.16+root.io.2",
    "0.4.13+root.io.2",
    "0.4.17+root.io.2",
    "0.4.14+root.io.3",
    "0.4.12+root.io.2",
    "0.7.31+root.io.1",
    "0.7.29+root.io.2",
    "0.7.28+root.io.2",
    "0.6.1+root.io.2",
    "0.4.35+root.io.2",
    "0.7.16+root.io.1",
    "0.7.15+root.io.1",
    "0.7.8+root.io.1",
    "0.7.11+root.io.1",
    "0.7.7+root.io.2",
    "0.4.48+root.io.2",
    "0.7.14+root.io.1",
    "0.4.60+root.io.2",
    "0.4.51+root.io.2",
    "0.4.55+root.io.2",
    "0.4.57+root.io.2",
    "0.4.59+root.io.2",
    "0.4.53+root.io.2",
    "0.4.54+root.io.2",
    "0.4.58+root.io.2",
    "0.7.1+root.io.2",
    "0.7.2+root.io.2",
    "0.7.5+root.io.2",
    "0.7.9+root.io.1",
    "0.7.23+root.io.1",
    "0.7.26+root.io.2",
    "0.7.30+root.io.1",
    "0.7.4+root.io.2",
    "0.7.0+root.io.2",
    "0.7.12+root.io.1",
    "0.7.18+root.io.2",
    "0.4.50+root.io.2",
    "0.6.8+root.io.2",
    "0.4.56+root.io.2",
    "0.4.41+root.io.2",
    "0.4.42+root.io.2",
    "0.4.49+root.io.2",
    "0.5.2+root.io.2",
    "0.4.33+root.io.2",
    "0.4.28+root.io.2",
    "0.6.6+root.io.2",
    "0.6.3+root.io.2",
    "0.6.5+root.io.2",
    "0.6.2+root.io.2",
    "0.6.4+root.io.2",
    "0.6.7+root.io.2",
    "0.4.44+root.io.2",
    "0.4.46+root.io.2",
    "0.4.32+root.io.2",
    "0.4.36+root.io.2",
    "0.7.20+root.io.2",
    "0.7.12+root.io.2",
    "0.7.30+root.io.2",
    "0.7.23+root.io.2",
    "0.7.34+root.io.1",
    "0.7.9+root.io.2",
    "0.7.8+root.io.2",
    "0.7.14+root.io.2",
    "0.7.15+root.io.2",
    "0.7.11+root.io.2",
    "0.7.10+root.io.3",
    "0.7.13+root.io.3",
    "0.7.16+root.io.2",
    "0.4.22+root.io.2",
    "0.4.45+root.io.2",
    "0.4.27+root.io.2",
    "0.4.43+root.io.2",
    "0.4.26+root.io.2",
    "0.4.19+root.io.2",
    "0.4.18+root.io.2",
    "0.6.9+root.io.2",
    "0.4.37+root.io.2",
    "0.4.20+root.io.2",
    "0.4.39+root.io.2",
    "0.4.25+root.io.2",
    "0.4.38+root.io.2",
    "0.4.10+root.io.2",
    "0.7.22+root.io.2",
    "0.7.32+root.io.1",
    "0.4.34+root.io.2",
    "0.4.31+root.io.2",
    "0.7.33+root.io.1",
    "0.5.1+root.io.2",
    "0.4.23+root.io.2",
    "0.4.21+root.io.2",
    "0.7.6+root.io.2",
    "0.4.24+root.io.2",
    "0.4.40+root.io.2",
    "0.4.47+root.io.2",
    "0.4.9+root.io.2",
    "0.5.0+root.io.2",
    "0.7.21+root.io.2",
    "0.7.24+root.io.2",
    "0.7.25+root.io.2"
]

root_patch_version

"root.io.2"

root_patched

true

total_fixed_versions

115.0

Root:PyPI / rootio-langchain-classic

Package

Name: rootio-langchain-classic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.3+root.io.1

Fixed

1.0.4+root.io.1

Fixed

1.0.2+root.io.1

Fixed

1.0.6+root.io.1

Fixed

1.0.0+root.io.1

Fixed

1.0.1+root.io.1

Database specific

upstream_version

"1.0.1"

source

"https://api.root.io/external/osv/ROOT-APP-PYPI-CVE-2026-45134.json"

all_fixed_versions

[
    "1.0.3+root.io.1",
    "1.0.4+root.io.1",
    "1.0.2+root.io.1",
    "1.0.6+root.io.1",
    "1.0.0+root.io.1",
    "1.0.1+root.io.1"
]

root_patch_version

"root.io.1"

root_patched

true

total_fixed_versions

6.0

Root:PyPI / rootio-langchain

Package

Name: rootio-langchain

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.3.26+root.io.1

Database specific

total_fixed_versions

1.0

upstream_version

"0.3.26"

all_fixed_versions

[
    "0.3.26+root.io.1"
]

root_patch_version

"root.io.1"

root_patched

true

source

"https://api.root.io/external/osv/ROOT-APP-PYPI-CVE-2026-45134.json"