Search for packages
| purl | pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1hw3-vhwb-nkcd
Aliases: CVE-2024-12718 |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
Affected by 3 other vulnerabilities. |
|
VCID-2v5u-2z4w-ffgx
Aliases: CVE-2024-4032 |
python: incorrect IPv4 and IPv6 private ranges |
Affected by 8 other vulnerabilities. |
|
VCID-4afh-28ss-mudf
Aliases: CVE-2025-4138 |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
Affected by 3 other vulnerabilities. |
|
VCID-757r-fs6p-qqdd
Aliases: CVE-2025-4517 |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
Affected by 3 other vulnerabilities. |
|
VCID-7s7y-9bw5-m3ep
Aliases: CVE-2024-6232 |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
Affected by 8 other vulnerabilities. |
|
VCID-8dtv-379a-wqfs
Aliases: CVE-2025-13836 |
cpython: Excessive read buffering DoS in http.client | There are no reported fixed by versions. |
|
VCID-8zdt-4q7m-t7ht
Aliases: CVE-2025-4330 |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
Affected by 3 other vulnerabilities. |
|
VCID-9nvp-aus1-9yed
Aliases: CVE-2024-6923 |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
Affected by 8 other vulnerabilities. |
|
VCID-9sms-mhht-n3aq
Aliases: CVE-2025-1795 |
python: Mishandling of comma during folding and unicode-encoding of email headers |
Affected by 8 other vulnerabilities. |
|
VCID-dnv8-yrd6-c7cv
Aliases: CVE-2024-8088 |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
Affected by 8 other vulnerabilities. |
|
VCID-e6sb-bh7v-9ugg
Aliases: CVE-2025-0938 |
python: cpython: URL parser allowed square brackets in domain names |
Affected by 8 other vulnerabilities. |
|
VCID-emaw-jmek-9bcy
Aliases: CVE-2025-6069 |
cpython: Python HTMLParser quadratic complexity | There are no reported fixed by versions. |
|
VCID-q6g1-cjz3-77e4
Aliases: CVE-2025-4435 |
cpython: Tarfile extracts filtered members when errorlevel=0 |
Affected by 3 other vulnerabilities. |
|
VCID-qwhz-912b-8kh5
Aliases: CVE-2024-0397 |
cpython: python: Memory race condition in ssl.SSLContext certificate store methods |
Affected by 8 other vulnerabilities. |
|
VCID-smck-sdx2-c7du
Aliases: CVE-2024-11168 |
python: Improper validation of IPv6 and IPvFuture addresses |
Affected by 8 other vulnerabilities. |
|
VCID-v186-7sv1-ubej
Aliases: CVE-2024-7592 |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
Affected by 8 other vulnerabilities. |
|
VCID-znkr-fxtj-4uc7
Aliases: CVE-2025-8291 |
cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-29cz-9gkc-1bfx | A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality. |
CVE-2020-29651
GHSA-hj5v-574p-mj7c PYSEC-2020-92 |
| VCID-2shb-2cvn-dyd2 | Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation. |
CVE-2023-24329
|
| VCID-4gsg-5e6s-63g4 | Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution. |
CVE-2021-28861
|
| VCID-4z89-3tfk-pyge | Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation. |
CVE-2023-40217
|
| VCID-7ka5-7jrn-dber | Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation. |
CVE-2023-6597
|
| VCID-7s7y-9bw5-m3ep | Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
CVE-2024-6232
|
| VCID-8hug-fhhb-sbgt | python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used |
CVE-2024-5642
|
| VCID-9nvp-aus1-9yed | Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
CVE-2024-6923
|
| VCID-9sms-mhht-n3aq | python: Mishandling of comma during folding and unicode-encoding of email headers |
CVE-2025-1795
|
| VCID-a8mv-mr3q-vygz | Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution. |
CVE-2022-42919
|
| VCID-bqp2-x383-xqfh | Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution. |
CVE-2015-20107
|
| VCID-dexx-3ssz-nqfg | python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple |
CVE-2023-27043
|
| VCID-e6rs-jwvu-jycd | python: urllib: HTTP client possible infinite loop on a 100 Continue response |
CVE-2021-3737
|
| VCID-e6sb-bh7v-9ugg | python: cpython: URL parser allowed square brackets in domain names |
CVE-2025-0938
|
| VCID-emaw-jmek-9bcy | cpython: Python HTMLParser quadratic complexity |
CVE-2025-6069
|
| VCID-h7z2-vc14-nfhq | python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS |
CVE-2020-10735
|
| VCID-js5p-py72-2kga | Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation. |
CVE-2024-0450
|
| VCID-qqh6-evfk-1fgy | Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution. |
CVE-2022-45061
|
| VCID-smck-sdx2-c7du | python: Improper validation of IPv6 and IPvFuture addresses |
CVE-2024-11168
|
| VCID-tbuw-2msj-tqd9 | python: Virtual environment (venv) activation scripts don't quote paths |
CVE-2024-9287
|
| VCID-v186-7sv1-ubej | Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
CVE-2024-7592
|
| VCID-vpwj-d49q-1uh8 | Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution. |
CVE-2022-0391
|
| VCID-znkr-fxtj-4uc7 | cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked |
CVE-2025-8291
|