VulnerableCode Package Details - pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-11ed-tk56-8khn	python: Python: Command-line option injection in webbrowser.open() via crafted URLs	CVE-2026-4519
VCID-1pr1-jkqa-43g6	cpython: CPython: Logging Bypass in Legacy .pyc File Handling	CVE-2026-2297
VCID-8dtv-379a-wqfs	cpython: Excessive read buffering DoS in http.client	CVE-2025-13836
VCID-a2st-585f-uucu		CVE-2026-1502
VCID-emaw-jmek-9bcy	cpython: Python HTMLParser quadratic complexity	CVE-2025-6069
VCID-znkr-fxtj-4uc7	cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked	CVE-2025-8291
VCID-zxzn-25zt-ukct	Mitgation of CVE-2026-4519 was incomplete. If the URL contained "%action" the mitigation could be bypassed for certain browser types the "webbrowser.open()" API could have commands injected into the underlying shell. See CVE-2026-4519 for details.	CVE-2026-4786

Vulnerability

Summary

Aliases

VCID-11ed-tk56-8khn

python: Python: Command-line option injection in webbrowser.open() via crafted URLs

CVE-2026-4519

VCID-1pr1-jkqa-43g6

cpython: CPython: Logging Bypass in Legacy .pyc File Handling

CVE-2026-2297

VCID-8dtv-379a-wqfs

cpython: Excessive read buffering DoS in http.client

CVE-2025-13836

VCID-a2st-585f-uucu

CVE-2026-1502

VCID-emaw-jmek-9bcy

cpython: Python HTMLParser quadratic complexity

CVE-2025-6069

VCID-znkr-fxtj-4uc7

cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked

CVE-2025-8291

VCID-zxzn-25zt-ukct

Mitgation of CVE-2026-4519 was incomplete. If the URL contained "%action" the mitigation could be bypassed for certain browser types the "webbrowser.open()" API could have commands injected into the underlying shell. See CVE-2026-4519 for details.

CVE-2026-4786

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-02T08:34:12.206684+00:00	Debian Importer	Fixing	VCID-11ed-tk56-8khn	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-05-02T06:48:27.452442+00:00	Debian Importer	Fixing	VCID-a2st-585f-uucu	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-05-02T03:01:08.230715+00:00	Debian Importer	Fixing	VCID-8dtv-379a-wqfs	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-05-02T02:50:47.351704+00:00	Debian Importer	Fixing	VCID-1pr1-jkqa-43g6	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-05-01T23:49:34.768304+00:00	Debian Importer	Fixing	VCID-zxzn-25zt-ukct	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-05-01T23:03:11.347764+00:00	Debian Importer	Fixing	VCID-znkr-fxtj-4uc7	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-05-01T21:42:12.575586+00:00	Debian Importer	Fixing	VCID-emaw-jmek-9bcy	https://security-tracker.debian.org/tracker/data/json	38.6.0