VYPR

rpm package

opensuse/python-nbclassic&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/python-nbclassic&distro=openSUSE%20Tumbleweed

Vulnerabilities (4)

  • CVE-2026-48779higJun 15, 2026
    affected < 1.3.3-2.1fixed 1.3.3-2.1

    ### Impact A high volume of exceptionally small fragments and data chunks can be sent by a peer, with modest network traffic, to force the remote peer into allocating and holding structural wrappers that consume far more memory than the default documented message-size limit, lea

  • CVE-2026-27601MedMar 3, 2026
    affected < 1.3.3-1.1fixed 1.3.3-1.1

    Underscore.js is a utility-belt library for JavaScript. Prior to 1.13.8, the _.flatten and _.isEqual functions use recursion without a depth limit. Under very specific conditions, detailed below, an attacker could exploit this in a Denial of Service (DoS) attack by triggering a s

  • CVE-2025-5889LowJun 9, 2025
    affected < 1.3.1-1.1fixed 1.3.1-1.1

    A vulnerability was found in juliangruber brace-expansion up to 1.1.11/2.0.1/3.0.0/4.0.0. It has been rated as problematic. Affected by this issue is the function expand of the file index.js. The manipulation leads to inefficient regular expression complexity. The attack may be l

  • CVE-2024-21538HigNov 8, 2024
    affected < 1.1.0-2.1fixed 1.1.0-2.1

    Versions of the package cross-spawn before 6.0.6, from 7.0.0 and before 7.0.5 are vulnerable to Regular Expression Denial of Service (ReDoS) due to improper input sanitization. An attacker can increase the CPU usage and crash the program by crafting a very large and well crafted