Filter
AND

Python PythonRegular-expression DoS when parsing TarFile headers

7.5
First published (updated )

Python PythonQuadratic complexity parsing cookies with backslashes

7.5
EPSS
0.11%
First published (updated )

ubuntu/pillowPillow 10.2.0 released, fixes CVE-2023-50447

8.1
First published (updated )

ubuntu/pillowAn issue was discovered in Pillow before 10.0.0. It is a Denial of Service that uncontrollably alloc…

7.5
First published (updated )

Fedoraproject Fedora`Cookie` HTTP header isn't stripped on cross-origin redirects

8.1
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Python PythonRace Condition

8.6
First published (updated )

Python PythonLast updated 24 July 2024

7.5
First published (updated )

Python PythonUse After Free

7.5
First published (updated )

Python PythonPython is vulnerable to a denial of service, caused by a RecursionError in email.utils.parseaddr #10…

7.5
First published (updated )

Python PythonInput Validation

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Python SetuptoolsInput Validation

7.5
First published (updated )

Python PillowPillow before 9.3.0 allows denial of service via SAMPLESPERPIXEL.

7.5
First published (updated )

Python PillowPillow before 9.2.0 performs Improper Handling of Highly Compressed GIF Data (Data Amplification).

7.5
First published (updated )

Python PythonLast updated 24 July 2024

7.5
First published (updated )

Python PythonLast updated 24 July 2024

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Python PythonLast updated 24 July 2024

7.4
First published (updated )

Python PythonPython pgAdmin4 uncontrolled search path

7.8
First published (updated )

Python PythonIn Python before 3.10.3 on Windows, local users can gain privileges because the search path is inade…

First published (updated )

Fedoraproject FedoraRegular Expression Denial of Service (ReDoS)

7.5
First published (updated )

Canonical Ubuntu LinuxLast updated 24 July 2024

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle Instantis Enterprisetrackurllib3 is vulnerable to a denial of service, caused by a regular expression denial of service (ReDo…

7.5
First published (updated )

Python PythonInput Validation

7.5
First published (updated )

redhat/python-pillowInput Validation

7.5
First published (updated )

redhat/python-pillowInput Validation

7.5
First published (updated )

redhat/python-pillowInput Validation

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

pip/st2clientStackStorm before 3.4.1, in some situations, has an infinite loop that consumes all available memory…

7.5
First published (updated )

Fedoraproject FedoraInput Validation

7.5
First published (updated )

Fedoraproject FedoraInput Validation

7.5
First published (updated )

Fedoraproject FedoraInput Validation

7.5
First published (updated )

redhat/python-pillowAn issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy w…

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Python PillowA flaw was found in python-pillow. Invalid tile boundaries could lead to an OOB Read in TiffReadRGBA…

7.5
First published (updated )

redhat/python-pillowA flaw was found in python-pillow. There is an Out of Bounds Read in SGIRleDecode.c.

7.5
First published (updated )

redhat/python-pillowInput Validation

7.5
First published (updated )

redhat/python-pillowInput Validation

7.1
First published (updated )

Python PythonIn Python 3.6 through 3.6.10, 3.7 through 3.7.8, 3.8 through 3.8.4rc1, and 3.9 through 3.9.0b4 on Wi…

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

redhat/python-pillowLast updated 24 July 2024

8.1
First published (updated )

Fedoraproject FedoraBuffer Overflow

7.8
First published (updated )

Python PythonIncorrect Type Cast

7.5
First published (updated )

Python PythonThe gzip_decode function in the xmlrpc client library in Python 3.4 and earlier allows remote attack…

7.5
First published (updated )

Python urllib3The _encode_invalid_chars function in util/url.py in the urllib3 library 1.25.2 through 1.25.7 for P…

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

redhat/pythonCRLF Injection

7.2
First published (updated )

Canonical Ubuntu LinuxLast updated 24 July 2024

7.5
First published (updated )

Canonical Ubuntu LinuxLast updated 24 July 2024

7.1
First published (updated )

Fedoraproject FedoraThe py-bcrypt module before 0.3 for Python does not properly handle concurrent memory access, which …

7.5
First published (updated )

Canonical Ubuntu LinuxBuffer Overflow

8.2
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Canonical Ubuntu LinuxInteger Overflow

7.5
First published (updated )

Canonical Ubuntu LinuxInteger Overflow

8.8
First published (updated )

Canonical Ubuntu LinuxInput Validation

7.5
First published (updated )

Python Typed Asttyped_ast 1.3.0 and 1.3.1 has a handle_keywordonly_args out-of-bounds read. An attacker with the abi…

7.5
First published (updated )

Python Typed Asttyped_ast 1.3.0 and 1.3.1 has an ast_for_arguments out-of-bounds read. An attacker with the ability …

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203