This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
145ce848-1165-11ec-ac7e-08002789875b | Python -- multiple vulnerabilities Python reports:
Discovery 2021-08-30 Entry 2021-09-09 python38 < 3.8.12 https://docs.python.org/3.8/whatsnew/changelog.html#changelog |
7d7221ee-d334-11ea-bc50-080027846a02 | Python -- multiple vulnerabilities Python reports:
Discovery 2020-02-11 Entry 2020-07-31 python38 < 3.8.5 https://docs.python.org/3/whatsnew/changelog.html#python-3-8-5-final CVE-2020-15801 |
a27b0bb6-84fc-11ea-b5b4-641c67a117d8 | Python -- Regular Expression DoS attack against client Ben Caller and Matt Schwager reports:
Discovery 2019-11-17 Entry 2020-04-23 Modified 2020-06-13 python38 < 3.8.3 python37 le 3.7.7 python36 < 3.6.10 python35 le 3.5.9_4 python27 < 2.7.18 https://python-security.readthedocs.io/vuln/urllib-basic-auth-regex.html https://bugs.python.org/issue39503 CVE-2020-8492 ports/245819 |
a9eeb3a3-ca5e-11ea-930b-080027846a02 | Python -- multiple vulnerabilities Python reports:
Discovery 2020-06-29 Entry 2020-07-20 python38 < 3.8.4 https://docs.python.org/3/whatsnew/changelog.html#python-3-8-4-final CVE-2020-15523 |
bffa40db-ad50-11eb-86b8-080027846a02 | Python -- multiple vulnerabilities Python reports:
Discovery 2021-03-08 Entry 2021-05-05 python38 < 3.8.10 python39 < 3.9.5 https://docs.python.org/3/whatsnew/changelog.html#changelog https://docs.python.org/3.8/whatsnew/changelog.html#changelog |
ca595a25-91d8-11ea-b470-080027846a02 | Python -- CRLF injection via the host part of the url passed to urlopen() Python reports:
Discovery 2019-10-24 Entry 2020-05-09 Modified 2020-06-13 python27 < 2.7.18 python38 < 3.8.3 python37 le 3.7.7 python36 < 3.6.10 python35 le 3.5.9_4 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18348 https://bugs.python.org/issue38576 CVE-2019-18348 |
f671c282-95ef-11eb-9c34-080027f515ea | python -- Information disclosure via pydoc -p: /getfile?key=path allows to read arbitrary file on the filesystem David Schwörer reports:
Discovery 2021-01-21 Entry 2021-04-10 python38 < 3.8.9 python39 < 3.9.3 CVE-2021-3426 https://pythoninsider.blogspot.com/2021/04/python-393-and-389-are-now-available.html https://bugs.python.org/issue42988 |