Search CVE reports

Toggle filters

81 – 84 of 84 results

CVE-2018-1000030

Low priority

Some fixes available 2 of 3

Python 2.7.14 is vulnerable to a Heap-Buffer-Overflow as well as a Heap-Use-After-Free. Python versions prior to 2.7.14 may also be vulnerable and it appears that Python 2.7.17 and prior may also be vulnerable however this has not...

7 affected packages

python2.6, python2.7, python3.2, python3.4, python3.5...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
python2.6 Not in release
python2.7 Not affected
python3.2 Not in release
python3.4 Not in release
python3.5 Not in release
python3.6 Not affected
python3.7 Not affected
Show all 7 packages Show less packages

CVE-2017-17522

Medium priority
Ignored

Lib/webbrowser.py in Python through 3.6.3 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted...

8 affected packages

jython, python2.6, python2.7, python3.2, python3.4...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
jython Not affected Not affected Not affected
python2.6 Not in release Not in release Not in release
python2.7 Not affected Not affected Not affected
python3.2 Not in release Not in release Not in release
python3.4 Not in release Not in release Not in release
python3.5 Not in release Not in release Not in release
python3.6 Not in release Not in release Not affected
python3.7 Not in release Not in release Not affected
Show all 8 packages Show less packages

CVE-2017-1000158

Medium priority
Fixed

CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the PyString_DecodeEscape function in stringobject.c, resulting in heap-based buffer overflow (and possible arbitrary code execution)

5 affected packages

python2.7, python3.4, python3.5, python3.6, python3.7

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
python2.7 Not affected Not affected Not affected
python3.4 Not in release Not in release Not in release
python3.5 Not in release Not in release Not in release
python3.6 Not in release Not in release Not affected
python3.7 Not in release Not in release Not affected
Show less packages

CVE-2007-4559

Medium priority

Some fixes available 2 of 28

Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in filenames in a TAR...

16 affected packages

python2.3, python2.4, python2.5, python2.6, python3.0...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
python2.3
python2.4
python2.5
python2.6
python3.0
python3.1
python2.7 Ignored Not in release Ignored
python3.4 Not in release Not in release Not in release
python3.5 Not in release Not in release Not in release
python3.6 Not in release Not in release Ignored
python3.7 Not in release Not in release Ignored
python3.8 Not in release Ignored Ignored
python3.9 Not in release Not in release Not in release
python3.10 Fixed Not in release Not in release
python3.11 Ignored Not in release Not in release
python3.12 Not in release Not in release Not in release
Show all 16 packages Show less packages
  1. Previous page
  2. 5
  3. 6
  4. 7
  5. 8
  6. 9
  7. Next page
Export to JSON