VulnerableCode Package Details - pkg:deb/debian/python3.14@3.14.3-3

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/python3.14@3.14.3-3

Essentials
History (17)

purl	pkg:deb/debian/python3.14@3.14.3-3

Next non-vulnerable version	3.14.4-1
Latest non-vulnerable version	3.14.4-1
Risk	3.2

Vulnerabilities affecting this package (6)

Vulnerability	Summary	Fixed by
VCID-11ed-tk56-8khn Aliases: CVE-2026-4519	python: Python: Command-line option injection in webbrowser.open() via crafted URLs	3.14.4-1 Affected by 0 other vulnerabilities.
VCID-1pr1-jkqa-43g6 Aliases: CVE-2026-2297	cpython: CPython: Logging Bypass in Legacy .pyc File Handling	3.14.3-5 Affected by 0 other vulnerabilities. 3.14.4-1 Affected by 0 other vulnerabilities.
VCID-9vcx-2fts-gkfw Aliases: CVE-2026-4224	cpython: Stack overflow parsing XML with deeply nested DTD content models	3.14.3-5 Affected by 0 other vulnerabilities. 3.14.4-1 Affected by 0 other vulnerabilities.
VCID-gqzt-rh1w-jkfu Aliases: CVE-2026-3644	cpython: Incomplete control character validation in http.cookies	3.14.3-5 Affected by 0 other vulnerabilities. 3.14.4-1 Affected by 0 other vulnerabilities.
VCID-n4au-q9bs-kucb Aliases: CVE-2025-13462	The "tarfile" module would still apply normalization of AREGTYPE (\x00) blocks to DIRTYPE, even while processing a multi-block member such as GNUTYPE_LONGNAME or GNUTYPE_LONGLINK. This could result in a crafted tar archive being misinterpreted by the tarfile module compared to other implementations.	3.14.3-5 Affected by 0 other vulnerabilities. 3.14.4-1 Affected by 0 other vulnerabilities.
VCID-q653-8f64-gkbe Aliases: CVE-2026-3446		3.14.4-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T11:00:29.259761+00:00	Debian Importer	Affected by	VCID-q653-8f64-gkbe	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:22:15.020482+00:00	Debian Importer	Affected by	VCID-n4au-q9bs-kucb	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:06:56.158349+00:00	Debian Importer	Affected by	VCID-gqzt-rh1w-jkfu	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:03:15.650525+00:00	Debian Importer	Affected by	VCID-1pr1-jkqa-43g6	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:01:58.199015+00:00	Debian Importer	Affected by	VCID-11ed-tk56-8khn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:59:01.970823+00:00	Debian Importer	Affected by	VCID-9vcx-2fts-gkfw	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T07:28:16.339534+00:00	Debian Importer	Affected by	VCID-q653-8f64-gkbe	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:59:11.339078+00:00	Debian Importer	Affected by	VCID-n4au-q9bs-kucb	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:06:23.436570+00:00	Debian Importer	Affected by	VCID-gqzt-rh1w-jkfu	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:04:13.201362+00:00	Debian Importer	Affected by	VCID-1pr1-jkqa-43g6	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:03:23.453343+00:00	Debian Importer	Affected by	VCID-11ed-tk56-8khn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:01:30.962087+00:00	Debian Importer	Affected by	VCID-9vcx-2fts-gkfw	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-10T07:00:31.814962+00:00	Debian Importer	Affected by	VCID-11ed-tk56-8khn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-08T19:56:46.722992+00:00	Debian Importer	Affected by	VCID-n4au-q9bs-kucb	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-08T18:43:34.439819+00:00	Debian Importer	Affected by	VCID-9vcx-2fts-gkfw	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-04T18:09:35.849783+00:00	Debian Importer	Affected by	VCID-gqzt-rh1w-jkfu	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-04T17:55:11.353301+00:00	Debian Importer	Affected by	VCID-1pr1-jkqa-43g6	https://security-tracker.debian.org/tracker/data/json	38.1.0