python2.7 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the python2.7 package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Arbitrary Command Injection

*
  • M
Unchecked Return Value

<2.7.13-2+deb9u6
  • M
HTTP Request Smuggling

<2.7.13-2+deb9u5
  • C
Buffer Overflow

<2.7.13-2+deb9u6
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<2.7.13-2+deb9u4
  • L
Resource Exhaustion

*
  • L
Resource Exhaustion

*
  • L
Arbitrary Code Injection

*
  • M
Cross-site Scripting (XSS)

<2.7.13-2+deb9u5
  • H
CVE-2019-16056

<2.7.13-2+deb9u4
  • M
Improper Input Validation

<2.7.13-2+deb9u4
  • C
Directory Traversal

<2.7.13-2+deb9u4
  • M
CRLF Injection

<2.7.13-2+deb9u4
  • M
CRLF Injection

<2.7.13-2+deb9u4
  • C
CVE-2019-9636

<2.7.13-2+deb9u4
  • H
NULL Pointer Dereference

<2.7.13-2+deb9u4
  • C
Arbitrary Command Injection

<2.7.13-2+deb9u3
  • H
Missing Initialization of Resource

<2.7.13-2+deb9u3
  • L
CVE-2013-1753

<2.7.9-1
  • L
Directory Traversal

<2.7.8-1
  • L
Open Redirect

<2.7.12-2
  • H
CVE-2018-1061

<2.7.13-2+deb9u3
  • H
CVE-2018-1060

<2.7.13-2+deb9u3
  • L
Out-of-bounds Write

*
  • L
Arbitrary Code Injection

*
  • C
Integer Overflow or Wraparound

<2.7.13-2+deb9u2
  • M
Improper Validation of Array Index

<2.7.7-1
  • M
HTTP Response Splitting

<2.7.10~rc1-1
  • C
Integer Overflow or Wraparound

<2.7.12~rc1-1
  • M
Protection Mechanism Failure

<2.7.12~rc1-1
  • M
Improper Data Handling

<2.7.9-1
  • M
CVE-2014-9365

<2.7.9-1
  • L
Numeric Errors

<2.7.8-1
  • L
Cryptographic Issues

*
  • L
Out-of-Bounds

<2.7.6-6
  • L
Resource Management Errors

<2.7.5-5
  • L
Improper Input Validation

<2.7.5-8
  • L
Cryptographic Issues

<2.7.3~rc1-1
  • M
Resource Management Errors

<2.7.3~rc1-1
  • L
Access Restriction Bypass

<2.7.3~rc2-2
  • L
Cross-site Scripting (XSS)

<2.7.2-8
  • M
Inadequate Encryption Strength

<2.7.3~rc1-1
  • M
Resource Management Errors

<2.7.1-7
  • L
CVE-2010-3492

<2.7.8-11
  • L
Integer Overflow or Wraparound

<2.7-1
  • L
Out-of-bounds Write

<2.7-1