VulnerableCode Package Details - pkg:alpm/archlinux/python-urllib3@1.26.4-2

Search for packages

Package details: pkg:alpm/archlinux/python-urllib3@1.26.4-2

Essentials
History (5)

purl	pkg:alpm/archlinux/python-urllib3@1.26.4-2

Next non-vulnerable version	1.26.5-1
Latest non-vulnerable version	1.26.5-1
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-6rq6-hxp1-aaae Aliases: CVE-2021-33503 GHSA-q2q7-5pp4-w6pg PYSEC-2021-108	Uncontrolled Resource Consumption An issue was discovered in urllib3, when provided with a URL containing many `@` characters in the authority component, the authority regular expression exhibits catastrophic backtracking, causing a denial of service if a URL were passed as a parameter or redirected to via an HTTP redirect.	1.26.5-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:34.524900+00:00	Arch Linux Importer	Affected by	VCID-6rq6-hxp1-aaae	https://security.archlinux.org/AVG-2038	36.0.0
2024-12-17T23:21:49.184990+00:00	Arch Linux Importer	Affected by	VCID-6rq6-hxp1-aaae	https://security.archlinux.org/AVG-2038	35.0.0
2024-09-18T02:01:53.418858+00:00	Arch Linux Importer	Affected by	VCID-6rq6-hxp1-aaae	https://security.archlinux.org/AVG-2038	34.0.1
2024-04-23T19:47:33.698433+00:00	Arch Linux Importer	Affected by	VCID-6rq6-hxp1-aaae	https://security.archlinux.org/AVG-2038	34.0.0rc4
2024-01-03T22:27:57.856510+00:00	Arch Linux Importer	Affected by	VCID-6rq6-hxp1-aaae	https://security.archlinux.org/AVG-2038	34.0.0rc1