USN-7015-5: Python vulnerabilities
USN-7015-1 fixed several vulnerabilities in Python. This update provides the corresponding update for CVE-2024-6232 and CVE-2024-6923 for python2.7 in Ubuntu 14.04 LTS, Ubuntu 16.04 LTS,...
USN-7116-1: Python vulnerability
It was discovered that Python incorrectly handled quoting path names when using the venv module. A local attacker able to control virtual environments could possibly...
mingw-python-waitress-2.1.2-7.fc40
FEDORA-2024-5abfdba2b7 Packages in this update: mingw-python-waitress-2.1.2-7.fc40 Update description: Backport fixes for CVE-2024-49768 and CVE-2024-49769. Read More
python-aiohttp-3.9.5-2.el9
FEDORA-EPEL-2024-7ac44bd3cc Packages in this update: python-aiohttp-3.9.5-2.el9 Update description: Security fix for CVE-2024-52304 Read More
python-aiohttp-3.9.5-2.fc39
FEDORA-2024-8c3c0913dc Packages in this update: python-aiohttp-3.9.5-2.fc39 Update description: Security fix for CVE-2024-52304 Read More
ZDI-24-1515: (0Day) Hugging Face Transformers Trax Model Deserialization of Untrusted Data Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in...
ZDI-24-1514: (0Day) Hugging Face Transformers MaskFormer Model Deserialization of Untrusted Data Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in...
ZDI-24-1513: (0Day) Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in...
ZDI-24-1517: McAfee Total Protection Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of McAfee Total Protection. An attacker must first obtain the ability to execute low-privileged...
ZDI-24-1516: Trend Micro Deep Security Agent Manual Scan Command Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Deep Security Agent. Authentication is required to exploit this vulnerability....