VYPR

rpm package

suse/python-asteval&distro=SUSE Package Hub 15 SP6

pkg:rpm/suse/python-asteval&distro=SUSE%20Package%20Hub%2015%20SP6

Vulnerabilities (1)

  • CVE-2025-24359HigJan 24, 2025
    affected < 1.0.6-bp156.4.3.1fixed 1.0.6-bp156.4.3.1

    ASTEVAL is an evaluator of Python expressions and statements. Prior to version 1.0.6, if an attacker can control the input to the `asteval` library, they can bypass asteval's restrictions and execute arbitrary Python code in the context of the application using the library. The v