| Bug | forky | sid | Description |
|---|
| CVE-2026-6100 | vulnerable | vulnerable | Use-after-free (UAF) was possible in the `lzma.LZMADecompressor`, `bz2 ... |
| CVE-2026-5713 | vulnerable | vulnerable | The "profiling.sampling" module (Python 3.15+) and "asyncio introspect ... |
| CVE-2026-4786 | vulnerable | vulnerable | Mitgation ofCVE-2026-4519 was incomplete. If the URL contained "%actio ... |
| CVE-2026-4519 | vulnerable | fixed | The webbrowser.open() API would accept leading dashes in the URL which ... |
| CVE-2026-4224 | vulnerable | fixed | When an Expat parser with a registered ElementDeclHandler parses an in ... |
| CVE-2026-3644 | vulnerable | fixed | The fix for CVE-2026-0672, which rejected control characters in http.c ... |
| CVE-2026-3446 | vulnerable | fixed | When calling base64.b64decode() or related functions the decoding proc ... |
| CVE-2026-2297 | vulnerable | fixed | The import hook in CPython that handles legacy *.pyc files (Sourceless ... |
| CVE-2026-1502 | vulnerable | vulnerable | CR/LF bytes were not rejected by HTTP client proxy tunnel headers or h ... |
| CVE-2025-15367 | vulnerable | vulnerable | The poplib module, when passed a user-controlled command, can have add ... |
| CVE-2025-15366 | vulnerable | vulnerable | The imaplib module, when passed a user-controlled command, can have ad ... |
| CVE-2025-13462 | vulnerable | fixed | The "tarfile" module would still apply normalization of AREGTYPE (\x00 ... |
| CVE-2025-12781 | vulnerable | vulnerable | When passing data to the b64decode(), standard_b64decode(), and urlsaf ... |
| Bug | Description |
|---|
| CVE-2026-1299 | The email module, specifically the "BytesGenerator" class, didn\u2019 ... |
| CVE-2026-0865 | User-controlled header names and values containing newlines can allow ... |
| CVE-2026-0672 | When using http.cookies.Morsel, user-controlled cookie values and para ... |
| CVE-2025-69534 | Python-Markdown version 3.8 contain a vulnerability where malformed HT ... |
| CVE-2025-15282 | User-controlled data URLs parsed by urllib.request.DataHandler allow i ... |
| CVE-2025-13837 | When loading a plist file, the plistlib module reads data in size spec ... |
| CVE-2025-13836 | When reading an HTTP response from a server, if no read amount is spec ... |
| CVE-2025-12084 | When building nested elements using xml.dom.minidom methods such as ap ... |
| CVE-2025-11468 | When folding a long comment in an email header containing exclusively ... |
| CVE-2025-8291 | The 'zipfile' module would not check the validity of the ZIP64 End of ... |
| CVE-2025-6075 | If the value passed to os.path.expandvars() is user-controlled a perf ... |