apk package

chainguard/airflow-3

pkg:apk/chainguard/airflow-3

Vulnerabilities (98)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2026-45409	Med	—	< 3.2.1-r4	3.2.1-r4	Jun 5, 2026	Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize t
CVE-2026-47265	Hig	7.5	< 3.2.2-r1	3.2.2-r1	Jun 2, 2026	AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.14.0, cookies set with the `cookies` parameter on requests are sent after following a cross-origin redirect. If a developer uses the `cookies` parameter on a per-request basis then
CVE-2026-34993	Med	6.4	< 3.2.2-r1	3.2.2-r1	Jun 2, 2026	AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.14.0, using ``CookieJar.load()`` with untrusted input may allow arbitrary code execution. Most applications using this function will be doing so with the user's own data, so this is
CVE-2026-45309		—	< 3.2.1-r4	3.2.1-r4	May 27, 2026	## Summary AsyncSSH 2.22.0 expands the OpenSSH-compatible `AuthorizedKeysFile` `%u` token with the raw SSH username during pre-authentication server config reload. A server configured with a documented per-user key pattern such as `AuthorizedKeysFile authorized_keys/%u` can be ma
CVE-2026-44681	Med	6.1	< 3.2.1-r2	3.2.1-r2	May 27, 2026	Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.12 and 1.7.1, an unauthenticated open redirect in Authlib's OpenIDImplicitGrant and OpenIDHybridGrant authorization endpoint lets a remote attacker cause the authorization server to issue an H
CVE-2026-8838	Cri	9.8	< 3.2.1-r4	3.2.1-r4	May 18, 2026	Unsafe use of Python's eval() on server-received data in the vector_in() function in amazon-redshift-python-driver before 2.1.14 allows a rogue server or man-in-the-middle actor to execute arbitrary code on the client. To remediate this issue, users should upgrade to version
CVE-2026-42561	Hig	7.5	< 3.2.1-r3	3.2.1-r3	May 13, 2026	Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.27, python-multipart has a denial of service vulnerability in multipart part header parsing. When parsing multipart/form-data, MultipartParser previously had no limit on the number of part headers or the si
CVE-2026-44432	Hig	7.5	< 3.2.1-r4	3.2.1-r4	May 13, 2026	urllib3 is an HTTP client library for Python. From 2.6.0 to before 2.7.0, urllib3 could decompress the whole response instead of the requested portion (1) during the second HTTPResponse.read(amt=N) call when the response was decompressed using the official Brotli library or (2) w
CVE-2026-44431	Med	5.3	< 3.2.1-r4	3.2.1-r4	May 13, 2026	urllib3 is an HTTP client library for Python. From 1.23 to before 2.7.0, cross-origin redirects followed from the low-level API via ProxyManager.connection_from_url().urlopen(..., assert_same_host=False) still forward these sensitive headers. This vulnerability is fixed in 2.7.0.
CVE-2026-44307	Hig	—	< 3.2.1-r3	3.2.1-r3	May 12, 2026	Mako is a template library written in Python. Prior to 1.3.12, on Windows, a URI using backslash traversal (e.g. \..\..\ secret.txt) bypasses the directory traversal check in Template.__init__ and the posixpath-based normalization in TemplateLookup.get_template(), allowing reads
CVE-2026-41018	Med	6.5	< 3.2.1-r4	3.2.1-r4	May 11, 2026	The Elasticsearch logging provider, when configured with a `host` URL that embeds credentials (for example `https://user:password@server.example.com:9200`), wrote the full host URL — including the embedded credentials — into task logs. Any user with task-log read permission could
CVE-2026-44405	Low	3.4	< 3.2.1-r2	3.2.1-r2	May 6, 2026	In Paramiko through 4.0.0 before a448945, rsakey.py allows the SHA-1 algorithm.
CVE-2026-41016	Med	5.9	< 3.2.1-r4	3.2.1-r4	Apr 30, 2026	Apache Airflow's SMTP provider `SmtpHook` called Python's `smtplib.SMTP.starttls()` without an SSL context, so no certificate validation was performed on the TLS upgrade. A man-in-the-middle between the Airflow worker and the SMTP server could present a self-signed certificate, c
CVE-2026-41425	Med	5.4	< 3.2.1-r0	3.2.1-r0	Apr 24, 2026	Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.11, there is no CSRF protection on the cache feature in authlib.integrations.starlette_client.OAuth. This vulnerability is fixed in 1.6.11.
CVE-2026-41066	Hig	7.5	< 3.2.1-r1	3.2.1-r1	Apr 24, 2026	lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration (with resolve_entities=True) allows untrusted XML input to read local files. Setting the resolve_entities option explicitly to resolv
CVE-2026-41205	Hig	7.5	< 3.2.1-r0	3.2.1-r0	Apr 23, 2026	Mako is a template library written in Python. Prior to 1.3.11, TemplateLookup.get_template() is vulnerable to path traversal when a URI starts with // (e.g., //../../../secret.txt). The root cause is an inconsistency between two slash-stripping implementations. Any file readable
CVE-2026-40347	Med	5.3	< 3.2.1-r0	3.2.1-r0	Apr 18, 2026	Python-Multipart is a streaming multipart parser for Python. Versions prior to 0.0.26 have a denial of service vulnerability when parsing crafted `multipart/form-data` requests with large preamble or epilogue sections. Upgrade to version 0.0.26 or later, which skips ahead to the
CVE-2026-34480	Hig	7.5	< 3.2.1-r1	3.2.1-r1	Apr 10, 2026	Apache Log4j Core's XmlLayout https://logging.apache.org/log4j/2.x/manual/layouts.html#XmlLayout , in versions up to and including 2.25.3, fails to sanitize characters forbidden by the XML 1.0 specification https://www.w3.org/TR/xml/#charsets producing invalid XML output whene
CVE-2026-34478	Hig	7.5	< 3.2.1-r1	3.2.1-r1	Apr 10, 2026	Apache Log4j Core's Rfc5424Layout https://logging.apache.org/log4j/2.x/manual/layouts.html#RFC5424Layout , in versions 2.21.0 through 2.25.3, is vulnerable to log injection via CRLF sequences due to undocumented renames of security-relevant configuration attributes. Two distinc
CVE-2026-34477	Med	5.9	< 3.2.1-r1	3.2.1-r1	Apr 10, 2026	The fix for CVE-2025-68161 https://logging.apache.org/security.html#CVE-2025-68161 was incomplete: it addressed hostname verification only when enabled via the log4j2.sslVerifyHostName https://logging.apache.org/log4j/2.x/manual/systemproperties.html#log4j2.sslVerifyHostName

CVE-2026-45409MedJun 5, 2026
affected < 3.2.1-r4fixed 3.2.1-r4
Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize t
CVE-2026-47265HigJun 2, 2026
affected < 3.2.2-r1fixed 3.2.2-r1
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.14.0, cookies set with the `cookies` parameter on requests are sent after following a cross-origin redirect. If a developer uses the `cookies` parameter on a per-request basis then
CVE-2026-34993MedJun 2, 2026
affected < 3.2.2-r1fixed 3.2.2-r1
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.14.0, using ``CookieJar.load()`` with untrusted input may allow arbitrary code execution. Most applications using this function will be doing so with the user's own data, so this is
CVE-2026-45309May 27, 2026
affected < 3.2.1-r4fixed 3.2.1-r4
## Summary AsyncSSH 2.22.0 expands the OpenSSH-compatible `AuthorizedKeysFile` `%u` token with the raw SSH username during pre-authentication server config reload. A server configured with a documented per-user key pattern such as `AuthorizedKeysFile authorized_keys/%u` can be ma
CVE-2026-44681MedMay 27, 2026
affected < 3.2.1-r2fixed 3.2.1-r2
Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.12 and 1.7.1, an unauthenticated open redirect in Authlib's OpenIDImplicitGrant and OpenIDHybridGrant authorization endpoint lets a remote attacker cause the authorization server to issue an H
CVE-2026-8838CriMay 18, 2026
affected < 3.2.1-r4fixed 3.2.1-r4
Unsafe use of Python's eval() on server-received data in the vector_in() function in amazon-redshift-python-driver before 2.1.14 allows a rogue server or man-in-the-middle actor to execute arbitrary code on the client. To remediate this issue, users should upgrade to version
CVE-2026-42561HigMay 13, 2026
affected < 3.2.1-r3fixed 3.2.1-r3
Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.27, python-multipart has a denial of service vulnerability in multipart part header parsing. When parsing multipart/form-data, MultipartParser previously had no limit on the number of part headers or the si
CVE-2026-44432HigMay 13, 2026
affected < 3.2.1-r4fixed 3.2.1-r4
urllib3 is an HTTP client library for Python. From 2.6.0 to before 2.7.0, urllib3 could decompress the whole response instead of the requested portion (1) during the second HTTPResponse.read(amt=N) call when the response was decompressed using the official Brotli library or (2) w
CVE-2026-44431MedMay 13, 2026
affected < 3.2.1-r4fixed 3.2.1-r4
urllib3 is an HTTP client library for Python. From 1.23 to before 2.7.0, cross-origin redirects followed from the low-level API via ProxyManager.connection_from_url().urlopen(..., assert_same_host=False) still forward these sensitive headers. This vulnerability is fixed in 2.7.0.
CVE-2026-44307HigMay 12, 2026
affected < 3.2.1-r3fixed 3.2.1-r3
Mako is a template library written in Python. Prior to 1.3.12, on Windows, a URI using backslash traversal (e.g. \..\..\ secret.txt) bypasses the directory traversal check in Template.__init__ and the posixpath-based normalization in TemplateLookup.get_template(), allowing reads
CVE-2026-41018MedMay 11, 2026
affected < 3.2.1-r4fixed 3.2.1-r4
The Elasticsearch logging provider, when configured with a `host` URL that embeds credentials (for example `https://user:password@server.example.com:9200`), wrote the full host URL — including the embedded credentials — into task logs. Any user with task-log read permission could
CVE-2026-44405LowMay 6, 2026
affected < 3.2.1-r2fixed 3.2.1-r2
In Paramiko through 4.0.0 before a448945, rsakey.py allows the SHA-1 algorithm.
CVE-2026-41016MedApr 30, 2026
affected < 3.2.1-r4fixed 3.2.1-r4
Apache Airflow's SMTP provider `SmtpHook` called Python's `smtplib.SMTP.starttls()` without an SSL context, so no certificate validation was performed on the TLS upgrade. A man-in-the-middle between the Airflow worker and the SMTP server could present a self-signed certificate, c
CVE-2026-41425MedApr 24, 2026
affected < 3.2.1-r0fixed 3.2.1-r0
Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.11, there is no CSRF protection on the cache feature in authlib.integrations.starlette_client.OAuth. This vulnerability is fixed in 1.6.11.
CVE-2026-41066HigApr 24, 2026
affected < 3.2.1-r1fixed 3.2.1-r1
lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration (with resolve_entities=True) allows untrusted XML input to read local files. Setting the resolve_entities option explicitly to resolv
CVE-2026-41205HigApr 23, 2026
affected < 3.2.1-r0fixed 3.2.1-r0
Mako is a template library written in Python. Prior to 1.3.11, TemplateLookup.get_template() is vulnerable to path traversal when a URI starts with // (e.g., //../../../secret.txt). The root cause is an inconsistency between two slash-stripping implementations. Any file readable
CVE-2026-40347MedApr 18, 2026
affected < 3.2.1-r0fixed 3.2.1-r0
Python-Multipart is a streaming multipart parser for Python. Versions prior to 0.0.26 have a denial of service vulnerability when parsing crafted `multipart/form-data` requests with large preamble or epilogue sections. Upgrade to version 0.0.26 or later, which skips ahead to the
CVE-2026-34480HigApr 10, 2026
affected < 3.2.1-r1fixed 3.2.1-r1
Apache Log4j Core's XmlLayout https://logging.apache.org/log4j/2.x/manual/layouts.html#XmlLayout , in versions up to and including 2.25.3, fails to sanitize characters forbidden by the XML 1.0 specification https://www.w3.org/TR/xml/#charsets producing invalid XML output whene
CVE-2026-34478HigApr 10, 2026
affected < 3.2.1-r1fixed 3.2.1-r1
Apache Log4j Core's Rfc5424Layout https://logging.apache.org/log4j/2.x/manual/layouts.html#RFC5424Layout , in versions 2.21.0 through 2.25.3, is vulnerable to log injection via CRLF sequences due to undocumented renames of security-relevant configuration attributes. Two distinc
CVE-2026-34477MedApr 10, 2026
affected < 3.2.1-r1fixed 3.2.1-r1
The fix for CVE-2025-68161 https://logging.apache.org/security.html#CVE-2025-68161 was incomplete: it addressed hostname verification only when enabled via the log4j2.sslVerifyHostName https://logging.apache.org/log4j/2.x/manual/systemproperties.html#log4j2.sslVerifyHostName

Page 1 of 5