rpm package
opensuse/python-black&distro=openSUSE Leap 15.6
pkg:rpm/opensuse/python-black&distro=openSUSE%20Leap%2015.6
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-32274 | — | < 24.3.0-150400.9.11.1 | 24.3.0-150400.9.11.1 | Mar 12, 2026 | Black is the uncompromising Python code formatter. Prior to 26.3.1, Black writes a cache file, the name of which is computed from various formatting options. The value of the --python-cell-magics option was placed in the filename without sanitization, which allowed an attacker wh | ||
| CVE-2024-21503 | Med | 5.3 | < 24.3.0-150400.9.8.1 | 24.3.0-150400.9.8.1 | Mar 19, 2024 | Versions of the package black before 24.3.0 are vulnerable to Regular Expression Denial of Service (ReDoS) via the lines_with_leading_tabs_expanded function in the strings.py file. An attacker could exploit this vulnerability by crafting a malicious input that causes a denial of |
- CVE-2026-32274Mar 12, 2026affected < 24.3.0-150400.9.11.1fixed 24.3.0-150400.9.11.1
Black is the uncompromising Python code formatter. Prior to 26.3.1, Black writes a cache file, the name of which is computed from various formatting options. The value of the --python-cell-magics option was placed in the filename without sanitization, which allowed an attacker wh
- affected < 24.3.0-150400.9.8.1fixed 24.3.0-150400.9.8.1
Versions of the package black before 24.3.0 are vulnerable to Regular Expression Denial of Service (ReDoS) via the lines_with_leading_tabs_expanded function in the strings.py file. An attacker could exploit this vulnerability by crafting a malicious input that causes a denial of