apk package

chainguard/nemo

pkg:apk/chainguard/nemo

Vulnerabilities (119)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2026-44513	Hig	8.8	< 2.7.3-r2	2.7.3-r2	May 14, 2026	Diffusers is the a library for pretrained diffusion models. Prior to 0.38.0, a trust_remote_code bypass in DiffusionPipeline.from_pretrained allows arbitrary remote code execution despite the user passing trust_remote_code=False (or omitting it, which is the default). The vulner
CVE-2026-41506	Med	4.7	< 2.7.3-r0	2.7.3-r0	May 8, 2026	go-git is an extensible git implementation library written in pure Go. Prior to versions 5.18.0 and 6.0.0-alpha.2, go-git may leak HTTP authentication credentials when following redirects during smart-HTTP clone and fetch operations. This issue has been patched in versions 5.18.0
CVE-2026-44405	Low	3.4	< 2.7.3-r2	2.7.3-r2	May 6, 2026	In Paramiko through 4.0.0 before a448945, rsakey.py allows the SHA-1 algorithm.
CVE-2026-6357	Med	—	< 2.7.3-r2	2.7.3-r2	Apr 27, 2026	pip prior to version 26.1 would run self-update check functionality after installing wheel files which required importing well-known Python modules names. These module imports were intentionally deferred to increase startup time of the pip CLI. The patch changes self-update funct
CVE-2026-41066	Hig	7.5	< 2.7.2-r2	2.7.2-r2	Apr 24, 2026	lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration (with resolve_entities=True) allows untrusted XML input to read local files. Setting the resolve_entities option explicitly to resolv
CVE-2026-41205	Hig	7.5	< 2.7.2-r2	2.7.2-r2	Apr 23, 2026	Mako is a template library written in Python. Prior to 1.3.11, TemplateLookup.get_template() is vulnerable to path traversal when a URI starts with // (e.g., //../../../secret.txt). The root cause is an inconsistency between two slash-stripping implementations. Any file readable
CVE-2026-41314	Med	6.5	< 2.7.2-r2	2.7.2-r2	Apr 22, 2026	pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft a PDF which leads to the RAM being exhausted. This requires accessing an image using `/FlateDecode` with large size values. This has been fi
CVE-2026-41313	Med	6.5	< 2.7.2-r2	2.7.2-r2	Apr 22, 2026	pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft a PDF which leads to long runtimes. This requires loading a PDF with a large trailer `/Size` value in incremental mode. This has been fixed
CVE-2026-41312	Med	6.5	< 2.7.2-r2	2.7.2-r2	Apr 22, 2026	pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft a PDF which leads to the RAM being exhausted. This requires accessing a stream compressed using `/FlateDecode` with a `/Predictor` unequal 1
CVE-2026-41168	Med	5.3	< 2.7.2-r2	2.7.2-r2	Apr 22, 2026	pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large `/Size` values or object streams with wrong large
CVE-2026-3219	Med	—	< 2.7.3-r2	2.7.3-r2	Apr 20, 2026	pip handles concatenated tar and ZIP files as ZIP files regardless of filename or whether a file is both a tar and ZIP file. This behavior could result in confusing installation behavior, such as installing "incorrect" files according to the filename of the archive. New behavior
CVE-2026-40491	Med	6.5	< 2.7.2-r2	2.7.2-r2	Apr 18, 2026	gdown is a Google Drive public file/folder downloader. Versions prior to 5.2.2 are vulnerable to a Path Traversal attack within the extractall functionality. When extracting a maliciously crafted ZIP or TAR archive, the library fails to sanitize or validate the filenames of the a
CVE-2026-40260	Med	5.3	< 2.7.2-r2	2.7.2-r2	Apr 17, 2026	pypdf is a free and open-source pure-python PDF library. In versions prior to 6.10.0, manipulated XMP metadata entity declarations can exhaust RAM. An attacker who exploits this vulnerability can craft a PDF which leads to large memory usage. This requires parsing the XMP metadat
CVE-2026-39892	Cri	9.8	< 2.7.2-r2	2.7.2-r2	Apr 8, 2026	cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. From 45.0.0 to before 46.0.7, if a non-contiguous buffer was passed to APIs which accepted Python buffers (e.g. Hash.update()), this could lead to buffer overflows. This vulner
CVE-2026-39883	Hig	7.0	< 2.7.2-r2	2.7.2-r2	Apr 8, 2026	OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed the Darwin ioreg command to use an absolute path but left the BSD kenv command using a bare name, allowing the same PATH hijacking attack on BSD and Solaris platf
CVE-2026-33810	Hig	8.2	< 2.7.3-r0	2.7.3-r0	Apr 8, 2026	When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in th
CVE-2026-32289	Med	6.1	< 2.7.3-r0	2.7.3-r0	Apr 8, 2026	Context was not properly tracked across template branches for JS template literals, leading to possibly incorrect escaping of content when branches were used. Additionally template actions within JS template literals did not properly track the brace depth, leading to incorrect es
CVE-2026-32288	Med	5.5	< 2.7.3-r0	2.7.3-r0	Apr 8, 2026	tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format.
CVE-2026-32283	Hig	7.5	< 2.7.3-r0	2.7.3-r0	Apr 8, 2026	If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.
CVE-2026-32282	Med	6.4	< 2.7.3-r0	2.7.3-r0	Apr 8, 2026	On Linux, if the target of Root.Chmod is replaced with a symlink while the chmod operation is in progress, Chmod can operate on the target of the symlink, even when the target lies outside the root. The Linux fchmodat syscall silently ignores the AT_SYMLINK_NOFOLLOW flag, which R

CVE-2026-44513HigMay 14, 2026
affected < 2.7.3-r2fixed 2.7.3-r2
Diffusers is the a library for pretrained diffusion models. Prior to 0.38.0, a trust_remote_code bypass in DiffusionPipeline.from_pretrained allows arbitrary remote code execution despite the user passing trust_remote_code=False (or omitting it, which is the default). The vulner
CVE-2026-41506MedMay 8, 2026
affected < 2.7.3-r0fixed 2.7.3-r0
go-git is an extensible git implementation library written in pure Go. Prior to versions 5.18.0 and 6.0.0-alpha.2, go-git may leak HTTP authentication credentials when following redirects during smart-HTTP clone and fetch operations. This issue has been patched in versions 5.18.0
CVE-2026-44405LowMay 6, 2026
affected < 2.7.3-r2fixed 2.7.3-r2
In Paramiko through 4.0.0 before a448945, rsakey.py allows the SHA-1 algorithm.
CVE-2026-6357MedApr 27, 2026
affected < 2.7.3-r2fixed 2.7.3-r2
pip prior to version 26.1 would run self-update check functionality after installing wheel files which required importing well-known Python modules names. These module imports were intentionally deferred to increase startup time of the pip CLI. The patch changes self-update funct
CVE-2026-41066HigApr 24, 2026
affected < 2.7.2-r2fixed 2.7.2-r2
lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration (with resolve_entities=True) allows untrusted XML input to read local files. Setting the resolve_entities option explicitly to resolv
CVE-2026-41205HigApr 23, 2026
affected < 2.7.2-r2fixed 2.7.2-r2
Mako is a template library written in Python. Prior to 1.3.11, TemplateLookup.get_template() is vulnerable to path traversal when a URI starts with // (e.g., //../../../secret.txt). The root cause is an inconsistency between two slash-stripping implementations. Any file readable
CVE-2026-41314MedApr 22, 2026
affected < 2.7.2-r2fixed 2.7.2-r2
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft a PDF which leads to the RAM being exhausted. This requires accessing an image using `/FlateDecode` with large size values. This has been fi
CVE-2026-41313MedApr 22, 2026
affected < 2.7.2-r2fixed 2.7.2-r2
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft a PDF which leads to long runtimes. This requires loading a PDF with a large trailer `/Size` value in incremental mode. This has been fixed
CVE-2026-41312MedApr 22, 2026
affected < 2.7.2-r2fixed 2.7.2-r2
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft a PDF which leads to the RAM being exhausted. This requires accessing a stream compressed using `/FlateDecode` with a `/Predictor` unequal 1
CVE-2026-41168MedApr 22, 2026
affected < 2.7.2-r2fixed 2.7.2-r2
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large `/Size` values or object streams with wrong large
CVE-2026-3219MedApr 20, 2026
affected < 2.7.3-r2fixed 2.7.3-r2
pip handles concatenated tar and ZIP files as ZIP files regardless of filename or whether a file is both a tar and ZIP file. This behavior could result in confusing installation behavior, such as installing "incorrect" files according to the filename of the archive. New behavior
CVE-2026-40491MedApr 18, 2026
affected < 2.7.2-r2fixed 2.7.2-r2
gdown is a Google Drive public file/folder downloader. Versions prior to 5.2.2 are vulnerable to a Path Traversal attack within the extractall functionality. When extracting a maliciously crafted ZIP or TAR archive, the library fails to sanitize or validate the filenames of the a
CVE-2026-40260MedApr 17, 2026
affected < 2.7.2-r2fixed 2.7.2-r2
pypdf is a free and open-source pure-python PDF library. In versions prior to 6.10.0, manipulated XMP metadata entity declarations can exhaust RAM. An attacker who exploits this vulnerability can craft a PDF which leads to large memory usage. This requires parsing the XMP metadat
CVE-2026-39892CriApr 8, 2026
affected < 2.7.2-r2fixed 2.7.2-r2
cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. From 45.0.0 to before 46.0.7, if a non-contiguous buffer was passed to APIs which accepted Python buffers (e.g. Hash.update()), this could lead to buffer overflows. This vulner
CVE-2026-39883HigApr 8, 2026
affected < 2.7.2-r2fixed 2.7.2-r2
OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed the Darwin ioreg command to use an absolute path but left the BSD kenv command using a bare name, allowing the same PATH hijacking attack on BSD and Solaris platf
CVE-2026-33810HigApr 8, 2026
affected < 2.7.3-r0fixed 2.7.3-r0
When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in th
CVE-2026-32289MedApr 8, 2026
affected < 2.7.3-r0fixed 2.7.3-r0
Context was not properly tracked across template branches for JS template literals, leading to possibly incorrect escaping of content when branches were used. Additionally template actions within JS template literals did not properly track the brace depth, leading to incorrect es
CVE-2026-32288MedApr 8, 2026
affected < 2.7.3-r0fixed 2.7.3-r0
tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format.
CVE-2026-32283HigApr 8, 2026
affected < 2.7.3-r0fixed 2.7.3-r0
If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.
CVE-2026-32282MedApr 8, 2026
affected < 2.7.3-r0fixed 2.7.3-r0
On Linux, if the target of Root.Chmod is replaced with a symlink while the chmod operation is in progress, Chmod can operate on the target of the symlink, even when the target lies outside the root. The Linux fchmodat syscall silently ignores the AT_SYMLINK_NOFOLLOW flag, which R

Page 1 of 6