VYPR

rpm package

suse/python&distro=SUSE Linux Enterprise Real Time 15 SP2

pkg:rpm/suse/python&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP2

Vulnerabilities (3)

  • CVE-2021-4189MedAug 24, 2022
    affected < 2.7.18-150000.38.1fixed 2.7.18-150000.38.1

    A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is how the FTP client trusts the host from the PASV response by default. This flaw allows an attacker to set up a malicious FTP server that can trick FTP

  • CVE-2022-0391HigFeb 9, 2022
    affected < 2.7.18-150000.38.1fixed 2.7.18-150000.38.1

    A flaw was found in Python, specifically within the urllib.parse module. This module helps break Uniform Resource Locator (URL) strings into components. The issue involves how the urlparse method does not sanitize input and allows characters like '\r' and '\n' in the URL path. Th

  • CVE-2021-3572MedNov 10, 2021
    affected < 2.7.18-150000.38.1fixed 2.7.18-150000.38.1

    A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue to install a different revision on a repository. The highest threat from this vulnerability is to data integrity. This is fixed in python-pip