Software
Python PythonRegular-expression DoS when parsing TarFile headers
Python PythonQuadratic complexity parsing cookies with backslashes
ubuntu/pillowPillow 10.2.0 released, fixes CVE-2023-50447
ubuntu/pillowAn issue was discovered in Pillow before 10.0.0. It is a Denial of Service that uncontrollably alloc…
Fedoraproject Fedora`Cookie` HTTP header isn't stripped on cross-origin redirects
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Python PythonPython is vulnerable to a denial of service, caused by a RecursionError in email.utils.parseaddr #10…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
pip/pillowPillow before 9.3.0 allows denial of service via SAMPLESPERPIXEL.
pip/pillowPillow before 9.2.0 performs Improper Handling of Highly Compressed GIF Data (Data Amplification).
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Python PythonPython pgAdmin4 uncontrolled search path
Python PythonIn Python before 3.10.3 on Windows, local users can gain privileges because the search path is inade…
Fedoraproject FedoraRegular Expression Denial of Service (ReDoS)
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Instantis Enterprisetrackurllib3 is vulnerable to a denial of service, caused by a regular expression denial of service (ReDo…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
pip/st2clientStackStorm before 3.4.1, in some situations, has an infinite loop that consumes all available memory…
redhat/python-pillowAn issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy w…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Python PillowA flaw was found in python-pillow. Invalid tile boundaries could lead to an OOB Read in TiffReadRGBA…
redhat/python-pillowA flaw was found in python-pillow. There is an Out of Bounds Read in SGIRleDecode.c.
Python PythonIn Python 3.6 through 3.6.10, 3.7 through 3.7.8, 3.8 through 3.8.4rc1, and 3.9 through 3.9.0b4 on Wi…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Python PythonThe gzip_decode function in the xmlrpc client library in Python 3.4 and earlier allows remote attack…
Python urllib3The _encode_invalid_chars function in util/url.py in the urllib3 library 1.25.2 through 1.25.7 for P…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraThe py-bcrypt module before 0.3 for Python does not properly handle concurrent memory access, which …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Python Typed Asttyped_ast 1.3.0 and 1.3.1 has a handle_keywordonly_args out-of-bounds read. An attacker with the abi…
Python Typed Asttyped_ast 1.3.0 and 1.3.1 has an ast_for_arguments out-of-bounds read. An attacker with the ability …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.