VulnerableCode Package Details - pkg:rpm/redhat/python3-11-main@3.11.15-4?arch=hum1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/python3-11-main@3.11.15-4?arch=hum1

Essentials
History (10)

purl	pkg:rpm/redhat/python3-11-main@3.11.15-4?arch=hum1

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk

Vulnerabilities affecting this package (10)

Vulnerability	Summary	Fixed by
VCID-1uk5-6yqb-dyb5 Aliases: CVE-2025-13837	cpython: Out-of-memory when loading Plist	There are no reported fixed by versions.
VCID-8b19-pezx-6bcd Aliases: CVE-2026-0865	cpython: wsgiref.headers.Headers allows header newline injection in Python	There are no reported fixed by versions.
VCID-8dtv-379a-wqfs Aliases: CVE-2025-13836	cpython: Excessive read buffering DoS in http.client	There are no reported fixed by versions.
VCID-94n7-6q4s-3udv Aliases: CVE-2025-15282	cpython: Header injection via newlines in data URL mediatype in Python	There are no reported fixed by versions.
VCID-bn83-d2qp-9bfy Aliases: CVE-2025-11468	cpython: Missing character filtering in Python	There are no reported fixed by versions.
VCID-fcsb-dn49-47gy Aliases: CVE-2025-6075	python: Quadratic complexity in os.path.expandvars() with user-controlled template	There are no reported fixed by versions.
VCID-kn9b-2gxw-gqgx Aliases: CVE-2026-1299	cpython: email header injection due to unquoted newlines	There are no reported fixed by versions.
VCID-nqqc-u8d5-8qf6 Aliases: CVE-2025-12084	cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service	There are no reported fixed by versions.
VCID-ygdw-ymrf-kqg1 Aliases: CVE-2026-5713		There are no reported fixed by versions.
VCID-znkr-fxtj-4uc7 Aliases: CVE-2025-8291	cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-21T22:40:22.537618+00:00	RedHat Importer	Affected by	VCID-znkr-fxtj-4uc7	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8291.json	38.4.0
2026-04-21T22:40:19.413649+00:00	RedHat Importer	Affected by	VCID-fcsb-dn49-47gy	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6075.json	38.4.0
2026-04-21T22:40:14.574717+00:00	RedHat Importer	Affected by	VCID-8dtv-379a-wqfs	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13836.json	38.4.0
2026-04-21T22:40:13.985226+00:00	RedHat Importer	Affected by	VCID-1uk5-6yqb-dyb5	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13837.json	38.4.0
2026-04-21T22:39:49.429318+00:00	RedHat Importer	Affected by	VCID-nqqc-u8d5-8qf6	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12084.json	38.4.0
2026-04-21T22:39:37.048010+00:00	RedHat Importer	Affected by	VCID-bn83-d2qp-9bfy	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11468.json	38.4.0
2026-04-21T22:39:36.916317+00:00	RedHat Importer	Affected by	VCID-8b19-pezx-6bcd	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0865.json	38.4.0
2026-04-21T22:39:36.680157+00:00	RedHat Importer	Affected by	VCID-94n7-6q4s-3udv	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15282.json	38.4.0
2026-04-21T22:39:34.545555+00:00	RedHat Importer	Affected by	VCID-kn9b-2gxw-gqgx	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1299.json	38.4.0
2026-04-21T22:37:58.774466+00:00	RedHat Importer	Affected by	VCID-ygdw-ymrf-kqg1	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-5713.json	38.4.0