VulnerableCode Package Details - pkg:pypi/lmdb@0.63

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/lmdb@0.63

Essentials
History (19)

purl	pkg:pypi/lmdb@0.63

Next non-vulnerable version	0.98
Latest non-vulnerable version	0.98
Risk	4.5

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-nnpu-pg78-hbd1 Aliases: CVE-2019-16224 GHSA-9q62-r72g-pvv7 PYSEC-2019-236	An issue was discovered in py-lmdb 0.97. For certain values of md_flags, mdb_node_add does not properly set up a memcpy destination, leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.	0.98 Affected by 0 other vulnerabilities.
VCID-smph-echm-pua2 Aliases: CVE-2019-16226 GHSA-r8g9-w4f3-9crm PYSEC-2019-238	An issue was discovered in py-lmdb 0.97. mdb_node_del does not validate a memmove in the case of an unexpected node->mn_hi, leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.	0.98 Affected by 0 other vulnerabilities.
VCID-uhj4-k5ns-gybd Aliases: CVE-2019-16225 GHSA-c74c-p4p7-r8q5 PYSEC-2019-237	An issue was discovered in py-lmdb 0.97. For certain values of mp_flags, mdb_page_touch does not properly set up mc->mc_pg[mc->top], leading to an invalid write operation. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.	0.98 Affected by 0 other vulnerabilities.
VCID-y698-t8nr-8yad Aliases: CVE-2019-16228 GHSA-ggwq-vrgp-6gv4 PYSEC-2019-240	An issue was discovered in py-lmdb 0.97. There is a divide-by-zero error in the function mdb_env_open2 if mdb_env_read_header obtains a zero value for a certain size field. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.	0.98 Affected by 0 other vulnerabilities.
VCID-zxv6-c778-73gb Aliases: CVE-2019-16227 GHSA-pf3p-v9xp-mrvf PYSEC-2019-239	An issue was discovered in py-lmdb 0.97. For certain values of mn_flags, mdb_cursor_set triggers a memcpy with an invalid write operation within mdb_xcursor_init1. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.	0.98 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-13T08:59:12.891114+00:00	GHSA Importer	Affected by	VCID-y698-t8nr-8yad	https://github.com/advisories/GHSA-ggwq-vrgp-6gv4	38.6.0
2026-06-13T08:59:12.594796+00:00	GHSA Importer	Affected by	VCID-uhj4-k5ns-gybd	https://github.com/advisories/GHSA-c74c-p4p7-r8q5	38.6.0
2026-06-13T08:59:12.296242+00:00	GHSA Importer	Affected by	VCID-smph-echm-pua2	https://github.com/advisories/GHSA-r8g9-w4f3-9crm	38.6.0
2026-06-13T08:59:12.008379+00:00	GHSA Importer	Affected by	VCID-nnpu-pg78-hbd1	https://github.com/advisories/GHSA-9q62-r72g-pvv7	38.6.0
2026-06-12T18:24:17.862355+00:00	GitLab Importer	Affected by	VCID-smph-echm-pua2	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/lmdb/CVE-2019-16226.yml	38.6.0
2026-06-12T18:23:15.799149+00:00	GitLab Importer	Affected by	VCID-uhj4-k5ns-gybd	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/lmdb/CVE-2019-16225.yml	38.6.0
2026-06-12T18:22:58.283438+00:00	GitLab Importer	Affected by	VCID-nnpu-pg78-hbd1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/lmdb/CVE-2019-16224.yml	38.6.0
2026-06-12T18:19:45.059645+00:00	GitLab Importer	Affected by	VCID-zxv6-c778-73gb	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/lmdb/CVE-2019-16227.yml	38.6.0
2026-06-12T18:17:30.228816+00:00	GitLab Importer	Affected by	VCID-y698-t8nr-8yad	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/lmdb/CVE-2019-16228.yml	38.6.0
2026-06-12T04:02:55.511277+00:00	Pypa Importer	Affected by	VCID-uhj4-k5ns-gybd	https://github.com/pypa/advisory-database/blob/main/vulns/lmdb/PYSEC-2019-237.yaml	38.6.0
2026-06-12T04:02:55.355705+00:00	Pypa Importer	Affected by	VCID-y698-t8nr-8yad	https://github.com/pypa/advisory-database/blob/main/vulns/lmdb/PYSEC-2019-240.yaml	38.6.0
2026-06-12T04:02:55.204160+00:00	Pypa Importer	Affected by	VCID-zxv6-c778-73gb	https://github.com/pypa/advisory-database/blob/main/vulns/lmdb/PYSEC-2019-239.yaml	38.6.0
2026-06-12T04:02:55.046382+00:00	Pypa Importer	Affected by	VCID-nnpu-pg78-hbd1	https://github.com/pypa/advisory-database/blob/main/vulns/lmdb/PYSEC-2019-236.yaml	38.6.0
2026-06-12T04:02:54.888296+00:00	Pypa Importer	Affected by	VCID-smph-echm-pua2	https://github.com/pypa/advisory-database/blob/main/vulns/lmdb/PYSEC-2019-238.yaml	38.6.0
2026-06-11T20:44:41.912990+00:00	PyPI Importer	Affected by	VCID-uhj4-k5ns-gybd	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-06-11T20:44:41.738464+00:00	PyPI Importer	Affected by	VCID-y698-t8nr-8yad	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-06-11T20:44:41.564020+00:00	PyPI Importer	Affected by	VCID-zxv6-c778-73gb	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-06-11T20:44:41.395941+00:00	PyPI Importer	Affected by	VCID-smph-echm-pua2	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-06-11T20:44:41.204471+00:00	PyPI Importer	Affected by	VCID-nnpu-pg78-hbd1	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0