Search CVE reports

Toggle filters

31 – 35 of 35 results

CVE-2022-45061

Medium priority

Some fixes available 15 of 18

An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA (RFC 3490) decoder, such that a crafted, unreasonably long name being presented to the...

10 affected packages

python, python2.7, python3.10, python3.11, python3.4...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
python Not in release Not in release Not in release
python2.7 Not in release Fixed Fixed Fixed
python3.10 Not in release Fixed Not in release Not in release
python3.11 Not in release Fixed Not in release Not in release
python3.4 Not in release Not in release Not in release
python3.5 Not in release Not in release Not in release
python3.6 Not in release Not in release Fixed
python3.7 Not in release Not in release Fixed
python3.8 Not in release Fixed Fixed
python3.9 Not in release Fixed Not in release
Show all 10 packages Show less packages

CVE-2022-42919

High priority

Some fixes available 4 of 5

Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux allows local privilege escalation in a non-default configuration. The Python multiprocessing library, when used with the forkserver start method on Linux, allows pickles...

9 affected packages

python2.7, python3.10, python3.11, python3.4, python3.5...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
python2.7 Not in release Not affected Not affected Not affected
python3.10 Not in release Fixed Not in release Not in release
python3.11 Not in release Fixed Not in release Not in release
python3.4 Not in release Not in release Not in release
python3.5 Not in release Not in release Not in release
python3.6 Not in release Not in release Not affected
python3.7 Not in release Not in release Not affected
python3.8 Not in release Not affected Not affected
python3.9 Not in release Fixed Not in release
Show all 9 packages Show less packages

CVE-2022-37454

Medium priority

Some fixes available 16 of 20

The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the...

13 affected packages

php5, php7.0, php7.2, php7.4, php8.1...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
php5 Not in release Not in release Not in release
php7.0 Not in release Not in release Not in release
php7.2 Not in release Not in release Fixed
php7.4 Not in release Fixed Not in release
php8.1 Not in release Fixed Not in release Not in release
pypy3 Not affected Fixed Fixed Not in release
pysha3 Not in release Fixed Fixed Needs evaluation
python3.10 Not in release Fixed Not in release Not in release
python3.11 Not in release Not affected Not in release Not in release
python3.6 Not in release Not in release Fixed
python3.7 Not in release Not in release Fixed
python3.8 Not in release Fixed Fixed
python3.9 Not in release Fixed Not in release
Show all 13 packages Show less packages

CVE-2021-28861

Low priority
Fixed

** DISPUTED ** Python 3.x through 3.10 has an open redirection vulnerability in lib/http/server.py due to no protection against multiple (/) at the beginning of URI path which may leads to information disclosure. NOTE: this is...

9 affected packages

python2.7, python3.10, python3.11, python3.4, python3.5...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
python2.7 Not affected Not affected Not affected
python3.10 Fixed Not in release Not in release
python3.11 Not affected Not in release Not in release
python3.4 Not in release Not in release Not in release
python3.5 Not in release Not in release Not in release
python3.6 Not in release Not in release Not affected
python3.7 Not in release Not in release Not affected
python3.8 Not in release Not affected Not affected
python3.9 Not in release Fixed Not in release
Show all 9 packages Show less packages

CVE-2007-4559

Medium priority

Some fixes available 2 of 30

Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in filenames in a TAR...

16 affected packages

python2.3, python2.4, python2.5, python2.6, python2.7...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
python2.3
python2.4
python2.5
python2.6
python2.7 Ignored Ignored Ignored
python3.0
python3.1
python3.10 Fixed Not in release Not in release
python3.11 Ignored Not in release Not in release
python3.12 Not in release Not in release Not in release
python3.4 Not in release Not in release Not in release
python3.5 Not in release Not in release Not in release
python3.6 Not in release Not in release Ignored
python3.7 Not in release Not in release Ignored
python3.8 Not in release Ignored Ignored
python3.9 Not in release Ignored Not in release
Show all 16 packages Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. 4
  6. Next page
Export to JSON