VYPR

apk package

chainguard/python-3.11-base

pkg:apk/chainguard/python-3.11-base

Vulnerabilities (23)

  • CVE-2023-24329Feb 17, 2023
    affected < 0fixed 0

    An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters.

  • CVE-2020-10735Sep 9, 2022
    affected < 0fixed 0

    A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using int("text"), a system could take 50ms to parse an int string with 100,000 digits and 5s for 1,000,000 digits (float, decimal, int.from_bytes(), and int() for binary bases 2

  • CVE-2007-4559CriAug 28, 2007
    affected < 0fixed 0

    Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in filenames in a TAR archive, a related issue to CVE-2001-1267.

Page 2 of 2