rpm package
almalinux/python2-wheel
pkg:rpm/almalinux/python2-wheel
Vulnerabilities (22)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-28493 | Med | 5.3 | < 1:0.31.1-3.module_el8.6.0+2781+fed64c13 | 1:0.31.1-3.module_el8.6.0+2781+fed64c13 | Feb 1, 2021 | This affects the package jinja2 from 0.0.0 and before 2.11.3. The ReDoS vulnerability is mainly due to the `_punctuation_re regex` operator and its use of multiple wildcards. The last wildcard is the most exploitable as it searches for trailing punctuation. This issue can be miti | |
| CVE-2020-27619 | Cri | 9.8 | < 1:0.31.1-3.module_el8.6.0+2781+fed64c13 | 1:0.31.1-3.module_el8.6.0+2781+fed64c13 | Oct 22, 2020 | In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP. |
- affected < 1:0.31.1-3.module_el8.6.0+2781+fed64c13fixed 1:0.31.1-3.module_el8.6.0+2781+fed64c13
This affects the package jinja2 from 0.0.0 and before 2.11.3. The ReDoS vulnerability is mainly due to the `_punctuation_re regex` operator and its use of multiple wildcards. The last wildcard is the most exploitable as it searches for trailing punctuation. This issue can be miti
- affected < 1:0.31.1-3.module_el8.6.0+2781+fed64c13fixed 1:0.31.1-3.module_el8.6.0+2781+fed64c13
In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.
Page 2 of 2