Information on source package python3.4

Available versions

ReleaseVersion
jessie3.4.2-1+deb8u12

Open issues

BugjessieDescription
CVE-2022-45061vulnerable (no DSA, postponed)An issue was discovered in Python before 3.11.1. An unnecessary quadra ...
CVE-2022-0391vulnerable (no DSA, ignored)A flaw was found in Python, specifically within the urllib.parse modul ...
CVE-2015-20107vulnerable (no DSA)In Python (aka CPython) up to 3.10.8, the mailcap module does not add ...
CVE-2014-9365vulnerable (no DSA, ignored)The HTTP clients in the (1) httplib, (2) urllib, (3) urllib2, and (4) ...

Open unimportant issues

BugjessieDescription
CVE-2021-28861vulnerable** DISPUTED ** Python 3.x through 3.10 has an open redirection vulnera ...
CVE-2020-27619vulnerableIn Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK ...
CVE-2019-9674vulnerableLib/zipfile.py in Python through 3.7.2 allows remote attackers to caus ...
CVE-2017-17522vulnerable** DISPUTED ** Lib/webbrowser.py in Python through 3.6.3 does not vali ...

Resolved issues

BugDescription
CVE-2022-42919Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux allows lo ...
CVE-2022-37454The Keccak XKCP SHA-3 reference implementation before fdc6fef has an i ...
CVE-2022-26488In Python before 3.10.3 on Windows, local users can gain privileges be ...
CVE-2021-23336The package python/cpython from 0 and before 3.6.13, from 3.7.0 and be ...
CVE-2021-4189A flaw was found in Python, specifically in the FTP (File Transfer Pro ...
CVE-2021-3737A flaw was found in python. An improperly handled HTTP response in the ...
CVE-2021-3733There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker ...
CVE-2021-3426There's a flaw in Python 3's pydoc. A local or adjacent attacker who d ...
CVE-2021-3177Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctyp ...
CVE-2020-26116http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x be ...
CVE-2020-15801In Python 3.8.4, sys.path restrictions specified in a python38._pth fi ...
CVE-2020-14422Lib/ipaddress.py in Python through 3.8.3 improperly computes hash valu ...
CVE-2020-8492Python 2.7 through 2.7.17, 3.5 through 3.5.9, 3.6 through 3.6.10, 3.7 ...
CVE-2020-8315In Python (CPython) 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 thr ...
CVE-2019-20907In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craf ...
CVE-2019-18348An issue was discovered in urllib2 in Python 2.x through 2.7.17 and ur ...
CVE-2019-16935The documentation XML-RPC server in Python through 2.7.16, 3.x through ...
CVE-2019-16056An issue was discovered in Python through 2.7.16, 3.x through 3.5.7, 3 ...
CVE-2019-10160A security regression of CVE-2019-9636 was discovered in python since ...
CVE-2019-9948urllib in Python 2.x through 2.7.16 supports the local_file: scheme, w ...
CVE-2019-9947An issue was discovered in urllib2 in Python 2.x through 2.7.16 and ur ...
CVE-2019-9740An issue was discovered in urllib2 in Python 2.x through 2.7.16 and ur ...
CVE-2019-9636Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Impr ...
CVE-2019-5010An exploitable denial-of-service vulnerability exists in the X509 cert ...
CVE-2018-1000802Python Software Foundation Python (CPython) version 2.7 contains a CWE ...
CVE-2018-1000117Python Software Foundation CPython version From 3.2 until 3.6.4 on Win ...
CVE-2018-1000030Python 2.7.14 is vulnerable to a Heap-Buffer-Overflow as well as a Hea ...
CVE-2018-20852http.cookiejar.DefaultPolicy.domain_return_ok in Lib/http/cookiejar.py ...
CVE-2018-20406Modules/_pickle.c in Python before 3.7.1 has an integer overflow via a ...
CVE-2018-14647Python's elementtree C accelerator failed to initialise Expat's hash s ...
CVE-2018-1061python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is ...
CVE-2018-1060python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is ...
CVE-2017-1000158CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow ...
CVE-2016-1000110The CGIHandler class in Python before 2.7.12 does not protect against ...
CVE-2016-5699CRLF injection vulnerability in the HTTPConnection.putheader function ...
CVE-2016-5636Integer overflow in the get_data function in zipimport.c in CPython (a ...
CVE-2016-0772The smtplib library in CPython (aka Python) before 2.7.12, 3.x before ...
CVE-2014-4650The CGIHTTPServer module in Python 2.7.5 and 3.3.4 does not properly h ...
CVE-2014-4616Array index error in the scanstring function in the _json module in Py ...
CVE-2014-2667Race condition in the _get_masked_mode function in Lib/os.py in Python ...
CVE-2014-1912Buffer overflow in the socket.recvfrom_into function in Modules/socket ...
CVE-2013-7440The ssl.match_hostname function in CPython (aka Python) before 2.7.9 a ...
CVE-2013-7338Python before 3.3.4 RC1 allows remote attackers to cause a denial of s ...
CVE-2013-7040Python 2.7 before 3.4 only uses the last eight bits of the prefix to r ...
CVE-2013-1753The gzip_decode function in the xmlrpc client library in Python 3.4 an ...

Security announcements

DSA / DLADescription
ELA-572-1python3.4 - security update
ELA-510-1python3.4 - security update
ELA-289-2python3.4 - regression update
ELA-289-1python3.4 - security update
ELA-239-1python3.4 - security update
DLA-1924-1python3.4 - security update
DLA-1889-1python3.4 - security update
DLA-1852-1python3.4 - security update
DLA-1835-2python3.4 - regression update
DLA-1835-1python3.4 - security update
DLA-1663-1python3.4 - security update
DLA-1520-1python3.4 - security update

Search for package or bug name: Reporting problems