Search for packages
| purl | pkg:pypi/py@0.8.0a2 |
| Tags | Ghost |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-ve93-p9d1-aaak
Aliases: CVE-2020-29651 GHSA-hj5v-574p-mj7c PYSEC-2020-92 |
A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality. |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2024-09-18T12:10:41.908260+00:00 | Pypa Importer | Affected by | VCID-ve93-p9d1-aaak | https://github.com/pypa/advisory-database/blob/main/vulns/py/PYSEC-2020-92.yaml | 34.0.1 |
| 2024-09-17T22:57:23.080910+00:00 | PyPI Importer | Affected by | VCID-ve93-p9d1-aaak | https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip | 34.0.1 |
| 2024-01-03T18:39:25.168733+00:00 | PyPI Importer | Affected by | VCID-ve93-p9d1-aaak | https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip | 34.0.0rc1 |
| 2024-01-03T18:20:37.734947+00:00 | Pypa Importer | Affected by | VCID-ve93-p9d1-aaak | https://github.com/pypa/advisory-database/blob/main/vulns/py/PYSEC-2020-92.yaml | 34.0.0rc1 |