VulnerableCode Package Details - pkg:alpm/archlinux/python-urllib3@1.26.4-2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:alpm/archlinux/python-urllib3@1.26.4-2

Essentials
History (1)

purl	pkg:alpm/archlinux/python-urllib3@1.26.4-2

Next non-vulnerable version	1.26.5-1
Latest non-vulnerable version	1.26.5-1
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-8par-whwz-6kft Aliases: CVE-2021-33503 GHSA-q2q7-5pp4-w6pg PYSEC-2021-108	An issue was discovered in urllib3 before 1.26.5. When provided with a URL containing many @ characters in the authority component, the authority regular expression exhibits catastrophic backtracking, causing a denial of service if a URL were passed as a parameter or redirected to via an HTTP redirect.	1.26.5-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T18:26:43.520117+00:00	Arch Linux Importer	Affected by	VCID-8par-whwz-6kft	https://security.archlinux.org/AVG-2038	38.0.0