VYPR

apk package

chainguard/python-3.12-base-dev

pkg:apk/chainguard/python-3.12-base-dev

Vulnerabilities (22)

  • CVE-2020-10735HigSep 9, 2022
    affected < 3.12.0-r0fixed 3.12.0-r0

    A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using int("text"), a system could take 50ms to parse an int string with 100,000 digits and 5s for 1,000,000 digits (float, decimal, int.from_bytes(), and int() for binary bases 2

  • CVE-2007-4559CriAug 28, 2007
    affected < 0fixed 0

    Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in filenames in a TAR archive, a related issue to CVE-2001-1267.

Page 2 of 2