rpm package
suse/python-filelock&distro=SUSE Linux Enterprise Module for Development Tools 15 SP7
pkg:rpm/suse/python-filelock&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP7
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-22701 | — | < 3.0.12-150100.3.9.1 | 3.0.12-150100.3.9.1 | Jan 10, 2026 | filelock is a platform-independent file lock for Python. Prior to version 3.20.3, a TOCTOU race condition vulnerability exists in the SoftFileLock implementation of the filelock package. An attacker with local filesystem access and permission to create symlinks can exploit a race | ||
| CVE-2025-68146 | — | < 3.0.12-150100.3.6.1 | 3.0.12-150100.3.6.1 | Dec 16, 2025 | filelock is a platform-independent file lock for Python. In versions prior to 3.20.1, a Time-of-Check-Time-of-Use (TOCTOU) race condition allows local attackers to corrupt or truncate arbitrary user files through symlink attacks. The vulnerability exists in both Unix and Windows |
- CVE-2026-22701Jan 10, 2026affected < 3.0.12-150100.3.9.1fixed 3.0.12-150100.3.9.1
filelock is a platform-independent file lock for Python. Prior to version 3.20.3, a TOCTOU race condition vulnerability exists in the SoftFileLock implementation of the filelock package. An attacker with local filesystem access and permission to create symlinks can exploit a race
- CVE-2025-68146Dec 16, 2025affected < 3.0.12-150100.3.6.1fixed 3.0.12-150100.3.6.1
filelock is a platform-independent file lock for Python. In versions prior to 3.20.1, a Time-of-Check-Time-of-Use (TOCTOU) race condition allows local attackers to corrupt or truncate arbitrary user files through symlink attacks. The vulnerability exists in both Unix and Windows