| Release | Version |
|---|---|
| bullseye | 3.9.2-1 |
| sid | 3.9.2-1 |
| Bug | bullseye | sid | Description |
|---|---|---|---|
| CVE-2021-29921 | vulnerable | vulnerable | Improper input validation of octal strings in Python stdlib ipaddress ... |
| CVE-2021-3426 | vulnerable (no DSA) | vulnerable | Running `pydoc -p` allows other local users to extract arbitrary files. The `/getfile?key=path` URL allows to read arbitrary file on the filesystem. |
| Bug | bullseye | sid | Description |
|---|---|---|---|
| CVE-2020-27619 | vulnerable | vulnerable | In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK ... |
| Bug | Description |
|---|---|
| CVE-2021-23336 | The package python/cpython from 0 and before 3.6.13, from 3.7.0 and be ... |
| CVE-2021-3177 | Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctyp ... |
| CVE-2020-26116 | http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x be ... |
| CVE-2020-15801 | In Python 3.8.4, sys.path restrictions specified in a python38._pth fi ... |
| CVE-2019-20907 | In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craf ... |