CVE search results

81 – 83 of 83 results

Detailed view

Sort by:

CVE-2017-17522

Medium priority

Ignored

Lib/webbrowser.py in Python through 3.6.3 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted...

8 affected packages

jython, python2.6, python2.7, python3.2, python3.4...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
jython	—	Not affected	Not affected	Not affected
python2.6	—	Not in release	Not in release	Not in release
python2.7	—	Not affected	Not affected	Not affected
python3.2	—	Not in release	Not in release	Not in release
python3.4	—	Not in release	Not in release	Not in release
python3.5	—	Not in release	Not in release	Not in release
python3.6	—	Not in release	Not in release	Not affected
python3.7	—	Not in release	Not in release	Not affected

CVE-2017-1000158

Medium priority

Fixed

CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the PyString_DecodeEscape function in stringobject.c, resulting in heap-based buffer overflow (and possible arbitrary code execution)

5 affected packages

python2.7, python3.4, python3.5, python3.6, python3.7

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
python2.7	—	Not affected	Not affected	Not affected
python3.4	—	Not in release	Not in release	Not in release
python3.5	—	Not in release	Not in release	Not in release
python3.6	—	Not in release	Not in release	Not affected
python3.7	—	Not in release	Not in release	Not affected

CVE-2007-4559

Medium priority

Some fixes available 2 of 28

Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in filenames in a TAR...

16 affected packages

python2.3, python2.4, python2.5, python2.6, python3.0...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
python2.3	—	—	—	—
python2.4	—	—	—	—
python2.5	—	—	—	—
python2.6	—	—	—	—
python3.0	—	—	—	—
python3.1	—	—	—	—
python2.7	—	Ignored	Not in release	Ignored
python3.4	—	Not in release	Not in release	Not in release
python3.5	—	Not in release	Not in release	Not in release
python3.6	—	Not in release	Not in release	Ignored
python3.7	—	Not in release	Not in release	Ignored
python3.8	—	Not in release	Ignored	Ignored
python3.9	—	Not in release	Not in release	Not in release
python3.10	—	Fixed	Not in release	Not in release
python3.11	—	Ignored	Not in release	Not in release
python3.12	—	Not in release	Not in release	Not in release

Export to JSON

Results by page:

Search CVE reports