Homepage

python2-solv vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the python2-solv package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • L
Out-of-bounds Read

<0:0.6.34-4.el7
  • L
NULL Pointer Dereference

<0:0.6.34-4.el7
  • L
NULL Pointer Dereference

<0:0.6.34-4.el7
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Reliance on Untrusted Inputs in a Security Decision

<0:0.7.4-4.pulp.el7sat
  • H
Directory Traversal

<0:0.7.4-4.pulp.el7sat
  • H
Incorrect Default Permissions

<0:0.7.4-4.pulp.el7sat
  • H
Improper Validation of Certificate with Host Mismatch

<0:0.7.4-4.pulp.el7sat
  • H
Improper Input Validation

<0:0.7.4-4.pulp.el7sat
  • H
HTTP Request Smuggling

<0:0.7.4-4.pulp.el7sat
  • H
Cross-site Scripting (XSS)

<0:0.7.4-4.pulp.el7sat
  • H
Eval Injection

<0:0.7.4-4.pulp.el7sat
  • H
HTTP Response Splitting

<0:0.7.4-4.pulp.el7sat
  • H
Improper Authentication

<0:0.7.4-4.pulp.el7sat
  • H
Insufficiently Protected Credentials

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Improper Input Validation

<0:0.7.4-4.pulp.el7sat
  • H
Improperly Implemented Security Check for Standard

<0:0.7.4-4.pulp.el7sat
  • H
Cross-site Scripting (XSS)

<0:0.7.4-4.pulp.el7sat
  • H
CVE-2018-3258

<0:0.7.4-4.pulp.el7sat
  • H
Missing Authorization

<0:0.7.4-4.pulp.el7sat
  • M
Information Exposure Through Log Files

<0:0.6.34-2.pulp.el7sat
  • M
Cross-site Scripting (XSS)

<0:0.6.34-2.pulp.el7sat
  • M
Cross-site Scripting (XSS)

<0:0.6.34-2.pulp.el7sat
  • M
Cross-site Scripting (XSS)

<0:0.6.34-2.pulp.el7sat
  • M
Information Exposure

<0:0.7.12-2.el7pc
  • M
Information Exposure

<0:0.7.12-2.el7pc
  • M
Missing Authorization

<0:0.7.12-2.el7pc
  • M
Missing Authorization

<0:0.7.12-2.el7pc
  • M
Information Exposure Through Log Files

<0:0.7.12-2.el7pc
  • M
Information Exposure Through Log Files

<0:0.7.12-2.el7pc
  • H
Improper Input Validation

<0:0.7.4-4.pulp.el7sat
  • H
Cross-site Scripting (XSS)

<0:0.7.4-4.pulp.el7sat
  • M
Information Exposure

<0:0.7.12-2.el7pc
  • M
Information Exposure

<0:0.7.12-2.el7pc
  • M
Directory Traversal

<0:0.6.34-2.pulp.el7sat
  • M
Incorrect Permission Assignment for Critical Resource

<0:0.7.4-3.pulp.el7sat
  • M
Cleartext Storage of Sensitive Information

<0:0.7.4-3.pulp.el7sat
  • M
Improper Authentication

<0:0.7.4-3.pulp.el7sat
  • H
Improper Authorization

<0:0.7.4-4.pulp.el7sat
  • H
Cleartext Transmission of Sensitive Information

<0:0.7.4-4.pulp.el7sat
  • H
Improper Certificate Validation

<0:0.7.4-4.pulp.el7sat
  • H
Insufficiently Protected Credentials

<0:0.7.4-4.pulp.el7sat
  • H
Improper Authentication

<0:0.7.4-4.pulp.el7sat
  • M
Cross-site Scripting (XSS)

<0:0.7.4-3.pulp.el7sat
  • M
Information Exposure

<0:0.7.12-2.el7pc
  • M
Information Exposure

<0:0.7.12-2.el7pc
  • H
Information Exposure

<0:0.7.4-4.pulp.el7sat
  • H
Incorrect Default Permissions

<0:0.7.4-4.pulp.el7sat
  • M
SQL Injection

<0:0.7.12-2.el7pc
  • M
SQL Injection

<0:0.7.12-2.el7pc
  • H
Improperly Implemented Security Check for Standard

<0:0.7.4-4.pulp.el7sat
  • H
Missing Authorization

<0:0.7.4-4.pulp.el7sat
  • H
Improper Validation of Certificate with Host Mismatch

<0:0.7.4-4.pulp.el7sat
  • M
Execution with Unnecessary Privileges

<0:0.7.12-2.el7pc
  • M
Execution with Unnecessary Privileges

<0:0.7.12-2.el7pc
  • H
HTTP Request Smuggling

<0:0.7.4-4.pulp.el7sat
  • M
Resource Exhaustion

<0:0.7.4-3.pulp.el7sat
  • M
Out-of-Bounds

<0:0.7.12-2.el7pc
  • M
Out-of-Bounds

<0:0.7.12-2.el7pc
  • M
Information Exposure

<0:0.7.12-2.el7pc
  • M
Information Exposure

<0:0.7.12-2.el7pc
  • M
Cross-site Request Forgery (CSRF)

<0:0.7.12-2.el7pc
  • M
Cross-site Request Forgery (CSRF)

<0:0.7.12-2.el7pc
  • H
Cross-site Scripting (XSS)

<0:0.7.4-4.pulp.el7sat
  • M
Cross-site Request Forgery (CSRF)

<0:0.7.12-2.el7pc
  • M
Cross-site Request Forgery (CSRF)

<0:0.7.12-2.el7pc
  • H
Improper Input Validation

<0:0.7.4-4.pulp.el7sat
  • M
Cross-site Scripting (XSS)

<0:0.7.12-2.el7pc
  • M
Cross-site Scripting (XSS)

<0:0.7.12-2.el7pc
  • M
Improper Input Validation

<0:0.7.12-2.el7pc
  • M
Improper Input Validation

<0:0.7.12-2.el7pc
  • M
Improper Input Validation

<0:0.7.12-2.el7pc
  • M
Improper Input Validation

<0:0.7.12-2.el7pc
  • H
Eval Injection

<0:0.7.4-4.pulp.el7sat
  • H
Directory Traversal

<0:0.7.4-4.pulp.el7sat
  • H
HTTP Response Splitting

<0:0.7.4-4.pulp.el7sat
  • H
Reliance on Untrusted Inputs in a Security Decision

<0:0.7.4-4.pulp.el7sat
  • L
Out-of-bounds Read

*
  • L
Out-of-bounds Read

*
  • M
Out-of-Bounds

*
  • M
Out-of-Bounds

*
  • M
Out-of-Bounds

*
  • M
Out-of-Bounds

*
  • M
Out-of-Bounds

*
  • M
Out-of-Bounds

*
  • M
Out-of-Bounds

*
  • M
Out-of-Bounds

*
  • L
NULL Pointer Dereference

<0:0.6.34-4.el7
  • L
NULL Pointer Dereference

<0:0.6.34-4.el7
  • L
NULL Pointer Dereference

<0:0.6.34-4.el7
  • L
NULL Pointer Dereference

<0:0.6.34-4.el7
  • L
NULL Pointer Dereference

<0:0.6.34-4.el7
  • L
NULL Pointer Dereference

<0:0.6.34-4.el7
  • L
NULL Pointer Dereference

<0:0.6.34-4.el7
  • L
NULL Pointer Dereference

<0:0.6.34-4.el7
  • L
NULL Pointer Dereference

<0:0.6.34-4.el7
  • L
NULL Pointer Dereference

<0:0.6.34-4.el7
  • L
Out-of-bounds Read

<0:0.6.34-4.el7
  • L
Out-of-bounds Read

<0:0.6.34-4.el7
  • L
Out-of-bounds Read

<0:0.6.34-4.el7
  • L
Out-of-bounds Read

<0:0.6.34-4.el7
  • L
Out-of-bounds Read

<0:0.6.34-4.el7
  • M
HTTP Response Splitting

<0:0.7.4-3.pulp.el7sat
  • M
Out-of-bounds Read

*
  • L
Out-of-bounds Read

*
  • H
CVE-2018-3258

<0:0.7.4-4.pulp.el7sat
  • M
Covert Timing Channel

<0:0.7.12-2.el7pc
  • M
Covert Timing Channel

<0:0.7.12-2.el7pc
  • H
Covert Timing Channel

<0:0.7.4-4.pulp.el7sat
  • M
Arbitrary Argument Injection

<0:0.7.4-3.pulp.el7sat
  • M
Improper Neutralization of Special Elements

<0:0.7.4-3.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • L
Improper Input Validation

*
  • L
Improper Input Validation

*
  • M
CVE-2016-6346

<0:0.6.34-2.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • M
Improper Neutralization of Special Elements

<0:0.7.4-3.pulp.el7sat
  • M
Information Exposure

<0:0.7.12-2.el7pc
  • M
Information Exposure

<0:0.7.12-2.el7pc
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat
  • M
Use After Free

<0:0.7.12-2.el7pc
  • M
Use After Free

<0:0.7.12-2.el7pc
  • H
Deserialization of Untrusted Data

<0:0.7.4-4.pulp.el7sat