VYPR

rpm package

suse/python-base&distro=SUSE Linux Enterprise Real Time 15 SP3

pkg:rpm/suse/python-base&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3

Vulnerabilities (2)

  • CVE-2023-24329Feb 17, 2023
    affected < 2.7.18-150000.48.1fixed 2.7.18-150000.48.1

    An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters.

  • CVE-2022-45061Nov 9, 2022
    affected < 2.7.18-150000.48.1fixed 2.7.18-150000.48.1

    An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA (RFC 3490) decoder, such that a crafted, unreasonably long name being presented to the decoder could lead to a CPU denial of service. Hos