Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
+==============================================================================+
VULNERABILITIES FOUND
+==============================================================================+
-> Vulnerability found in lxml version 4.8.0
Vulnerability ID: 50748
Affected spec: <4.9.1
ADVISORY: Lxml 4.9.1 include a fix for CVE-2022-2309: NULL Pointer
Dereference allows attackers to cause a denial of service (or application...
CVE-2022-2309
For more information, please visit
https://pyup.io/vulnerabilities/CVE-2022-2309/50748/
-> Vulnerability found in mako version 1.1.6
Vulnerability ID: 50870
Affected spec: <1.2.2
ADVISORY: Mako 1.2.2 includes a fix for a REDoS
vulnerability.sqlalchemy/mako#366
PVE-2022-50870
For more information, please visit
https://pyup.io/vulnerabilities/PVE-2022-50870/50870/
-> Vulnerability found in ujson version 5.2.0
Vulnerability ID: 49755
Affected spec: <5.4.0
ADVISORY: Ujson 5.4.0 includes a fix for CVE-2022-31117: In versions
prior to 5.4.0 an error occurring while reallocating a buffer for string...
CVE-2022-31117
For more information, please visit
https://pyup.io/vulnerabilities/CVE-2022-31117/49755/
-> Vulnerability found in ujson version 5.2.0
Vulnerability ID: 49754
Affected spec: <5.4.0
ADVISORY: Ujson 5.4.0 includes a fix for CVE-2022-31116: Incorrect
handling of invalid surrogate pair...
CVE-2022-31116
For more information, please visit
https://pyup.io/vulnerabilities/CVE-2022-31116/49754/- Loading branch information
