python-tk vulnerabilities

Known vulnerabilities in the python-tk package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
H CVE-2023-40217	<2.7.18-150000.54.1
H Improper Input Validation	<2.7.18-150000.48.1
M Algorithmic Complexity	<2.7.18-150000.48.1
H Open Redirect	<2.7.18-150000.44.1
H Arbitrary Command Injection	<2.7.18-150000.41.1
C Encoding Error	<2.7.14-7.14.2
M Improper Input Validation	<2.7.14-7.17.1
L Directory Traversal	<2.7.17-7.32.2
M CRLF Injection	<2.7.17-7.32.2
H CVE-2019-9636	<2.7.17-7.32.2
H NULL Pointer Dereference	<2.7.17-7.32.2
M Cross-site Scripting (XSS)	<2.7.17-7.32.2
M CVE-2019-16056	<2.7.17-7.32.2
C Encoding Error	<2.7.17-7.32.2
M CRLF Injection	<2.7.14-7.24.1
M Cross-site Scripting (XSS)	<2.7.14-7.24.1
M Improper Input Validation	<2.7.17-7.32.2
M CVE-2019-16056	<2.7.14-7.24.1
M Missing Initialization of Resource	<2.7.17-7.32.2
M CVE-2018-1061	<2.7.17-7.32.2
L CVE-2018-1060	<2.7.17-7.32.2
M Arbitrary Command Injection	<2.7.17-7.32.2
H Use After Free	<2.7.17-7.32.2
M Divide By Zero	<2.7.17-7.32.2
H Integer Overflow or Wraparound	<2.7.17-7.32.2
M HTTP Response Splitting	<2.7.17-7.32.2
H Integer Overflow or Wraparound	<2.7.17-7.32.2
M Open Redirect	<2.7.17-7.32.2
M Protection Mechanism Failure	<2.7.17-7.32.2
M Numeric Errors	<2.7.17-7.32.2
M Directory Traversal	<2.7.17-7.32.2
H Out-of-Bounds	<2.7.17-7.32.2
M Improper Input Validation	<2.7.17-7.32.2
M CVE-2013-1753	<2.7.17-7.32.2
M CVE-2013-1752	<2.7.17-7.32.2
M Cryptographic Issues	<2.7.17-7.32.2
M Resource Management Errors	<2.7.17-7.32.2
L Access Restriction Bypass	<2.7.17-7.32.2
M Inadequate Encryption Strength	<2.7.17-7.32.2
M Resource Management Errors	<2.7.17-7.32.2
M Integer Overflow or Wraparound	<2.7.17-7.32.2
H Integer Overflow or Wraparound	<2.7.17-7.32.2
H Buffer Overflow	<2.7.17-7.32.2
H Numeric Errors	<2.7.17-7.32.2
H Integer Overflow or Wraparound	<2.7.17-7.32.2
H Incorrect Conversion between Numeric Types	<2.7.17-7.32.2
M Off-by-one Error	<2.7.17-7.32.2
M Resource Exhaustion	<2.7.17-7.35.1
M Resource Exhaustion	<2.7.17-7.35.1
M Arbitrary Code Injection	<2.7.17-7.38.1
M Resource Exhaustion	<2.7.17-7.38.1
M Loop with Unreachable Exit Condition ('Infinite Loop')	<2.7.17-7.41.1
M Arbitrary Code Injection	<2.7.17-7.44.4
M Directory Traversal	<2.7.17-7.47.1
M Buffer Overflow	<2.7.17-7.52.2
M Directory Traversal	<2.7.17-7.52.2
M HTTP Request Smuggling	<2.7.18-7.55.1

Vulnerability

Vulnerable Version

CVE-2023-40217

<2.7.18-150000.54.1

Improper Input Validation

<2.7.18-150000.48.1

Algorithmic Complexity

<2.7.18-150000.48.1

Open Redirect

<2.7.18-150000.44.1

Arbitrary Command Injection

<2.7.18-150000.41.1