VulnerableCode Package Details - pkg:deb/debian/python-babel@2.6.0%2Bdfsg.1-1%2Bdeb10u1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/python-babel@2.6.0%2Bdfsg.1-1%2Bdeb10u1

purl	pkg:deb/debian/python-babel@2.6.0%2Bdfsg.1-1%2Bdeb10u1

Next non-vulnerable version	2.8.0+dfsg.1-7
Latest non-vulnerable version	2.8.0+dfsg.1-7
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-yw7e-93us-8qh8 Aliases: CVE-2021-42771 GHSA-h4m5-qpfp-3mpv PYSEC-2021-421	Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (containing serialized Python objects) via directory traversal, leading to code execution.	2.8.0+dfsg.1-7 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-yw7e-93us-8qh8	Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (containing serialized Python objects) via directory traversal, leading to code execution.	CVE-2021-42771 GHSA-h4m5-qpfp-3mpv PYSEC-2021-421

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T18:27:18.924633+00:00	Debian Oval Importer	Affected by	VCID-yw7e-93us-8qh8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:08:22.908877+00:00	Debian Oval Importer	Fixing	VCID-yw7e-93us-8qh8	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-11T18:12:20.329188+00:00	Debian Oval Importer	Affected by	VCID-yw7e-93us-8qh8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T14:56:40.097747+00:00	Debian Oval Importer	Fixing	VCID-yw7e-93us-8qh8	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-08T17:58:39.189690+00:00	Debian Oval Importer	Affected by	VCID-yw7e-93us-8qh8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T23:28:49.330901+00:00	Debian Oval Importer	Fixing	VCID-yw7e-93us-8qh8	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0