Vulnerabilities affecting this package (0)
| Vulnerability |
Summary |
Fixed by |
|
This package is not known to be affected by vulnerabilities.
|
Vulnerabilities fixed by this package (6)
| Vulnerability |
Summary |
Aliases |
|
VCID-1hw3-vhwb-nkcd
|
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.
|
CVE-2024-12718
|
|
VCID-4afh-28ss-mudf
|
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.
|
CVE-2025-4138
|
|
VCID-757r-fs6p-qqdd
|
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.
|
CVE-2025-4517
|
|
VCID-8zdt-4q7m-t7ht
|
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.
|
CVE-2025-4330
|
|
VCID-gar7-7upf-d7cz
|
Python-Markdown has an Uncaught Exception
Python-Markdown version 3.8 contain a vulnerability where malformed HTML-like sequences can cause html.parser.HTMLParser to raise an unhandled AssertionError during Markdown parsing. Because Python-Markdown does not catch this exception, any application that processes attacker-controlled Markdown may crash. This enables remote, unauthenticated Denial of Service in web applications, documentation systems, CI/CD pipelines, and any service that renders untrusted Markdown. The issue was acknowledged by the vendor and fixed in version 3.8.1. This issue causes a remote Denial of Service in any application parsing untrusted Markdown, and can lead to Information Disclosure through uncaught exceptions.
|
CVE-2025-69534
GHSA-5wmx-573v-2qwq
|
|
VCID-q6g1-cjz3-77e4
|
cpython: Tarfile extracts filtered members when errorlevel=0
|
CVE-2025-4435
|