VYPR

rpm package

suse/python311-core&distro=SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS

pkg:rpm/suse/python311-core&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSS

Vulnerabilities (22)

  • CVE-2024-12718MedJun 3, 2025
    affected < 3.11.13-150400.9.60.1fixed 3.11.13-150400.9.60.1

    Allows modifying some file metadata (e.g. last modified) with filter="data" or file permissions (chmod) with filter="tar" of files outside the extraction directory. You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using TarFile.

  • CVE-2025-4516MedMay 15, 2025
    affected < 3.11.13-150400.9.60.1fixed 3.11.13-150400.9.60.1

    There is an issue in CPython when using `bytes.decode("unicode_escape", error="ignore|replace")`. If you are not using the "unicode_escape" encoding or an error handler your usage is not affected. To work-around this issue you may stop using the error= handler and instead wrap th

Page 2 of 2