File tree Expand file tree Collapse file tree
advisories/github-reviewed/2026/04 Expand file tree Collapse file tree Original file line number Diff line number Diff line change 11{
22 "schema_version" : " 1.4.0" ,
33 "id" : " GHSA-46r5-x6jq-v8g6" ,
4- "modified" : " 2026-04-27T16:36:32Z " ,
4+ "modified" : " 2026-06-06T00:57:58Z " ,
55 "published" : " 2026-04-07T15:30:50Z" ,
66 "aliases" : [
77 " CVE-2026-33866"
3232 "introduced" : " 0"
3333 },
3434 {
35- "last_affected " : " 3.10.1 "
35+ "fixed " : " 3.11.0rc0 "
3636 }
3737 ]
3838 }
39- ]
39+ ],
40+ "database_specific" : {
41+ "last_known_affected_version_range" : " <= 3.10.1"
42+ }
4043 }
4144 ],
4245 "references" : [
6366 {
6467 "type" : " PACKAGE" ,
6568 "url" : " https://github.com/mlflow/mlflow"
69+ },
70+ {
71+ "type" : " WEB" ,
72+ "url" : " https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2026-94.yaml"
6673 }
6774 ],
6875 "database_specific" : {
Original file line number Diff line number Diff line change 11{
22 "schema_version" : " 1.4.0" ,
33 "id" : " GHSA-527g-3w9m-29hv" ,
4- "modified" : " 2026-04-27T16:15:31Z " ,
4+ "modified" : " 2026-06-06T00:58:36Z " ,
55 "published" : " 2026-04-14T01:08:52Z" ,
66 "aliases" : [
77 " CVE-2026-40606"
5050 {
5151 "type" : " PACKAGE" ,
5252 "url" : " https://github.com/mitmproxy/mitmproxy"
53+ },
54+ {
55+ "type" : " WEB" ,
56+ "url" : " https://github.com/pypa/advisory-database/tree/main/vulns/mitmproxy/PYSEC-2026-92.yaml"
5357 }
5458 ],
5559 "database_specific" : {
Original file line number Diff line number Diff line change 11{
22 "schema_version" : " 1.4.0" ,
33 "id" : " GHSA-fh64-r2vc-xvhr" ,
4- "modified" : " 2026-04-24T21:04:05Z " ,
4+ "modified" : " 2026-06-06T00:58:17Z " ,
55 "published" : " 2026-04-07T15:30:50Z" ,
66 "aliases" : [
77 " CVE-2026-33865"
6666 {
6767 "type" : " PACKAGE" ,
6868 "url" : " https://github.com/mlflow/mlflow"
69+ },
70+ {
71+ "type" : " WEB" ,
72+ "url" : " https://github.com/pypa/advisory-database/tree/main/vulns/mlflow/PYSEC-2026-93.yaml"
6973 }
7074 ],
7175 "database_specific" : {
Original file line number Diff line number Diff line change 11{
22 "schema_version" : " 1.4.0" ,
33 "id" : " GHSA-fv5p-p927-qmxr" ,
4- "modified" : " 2026-04-27T16:30:30Z " ,
4+ "modified" : " 2026-06-06T00:58:49Z " ,
55 "published" : " 2026-04-16T22:53:32Z" ,
66 "aliases" : [
77 " CVE-2026-41481"
4747 {
4848 "type" : " PACKAGE" ,
4949 "url" : " https://github.com/langchain-ai/langchain"
50+ },
51+ {
52+ "type" : " WEB" ,
53+ "url" : " https://github.com/pypa/advisory-database/tree/main/vulns/langchain-text-splitters/PYSEC-2026-77.yaml"
5054 }
5155 ],
5256 "database_specific" : {
Original file line number Diff line number Diff line change 11{
22 "schema_version" : " 1.4.0" ,
33 "id" : " GHSA-r7w7-9xr2-qq2r" ,
4- "modified" : " 2026-04-27T16:33:53Z " ,
4+ "modified" : " 2026-06-06T00:59:02Z " ,
55 "published" : " 2026-04-16T23:00:12Z" ,
66 "aliases" : [
77 " CVE-2026-41488"
4747 {
4848 "type" : " PACKAGE" ,
4949 "url" : " https://github.com/langchain-ai/langchain"
50+ },
51+ {
52+ "type" : " WEB" ,
53+ "url" : " https://github.com/pypa/advisory-database/tree/main/vulns/langchain-openai/PYSEC-2026-76.yaml"
5054 }
5155 ],
5256 "database_specific" : {
Original file line number Diff line number Diff line change 11{
22 "schema_version" : " 1.4.0" ,
33 "id" : " GHSA-vfmq-68hx-4jfw" ,
4- "modified" : " 2026-04-27T16:43:20Z " ,
4+ "modified" : " 2026-06-06T00:59:15Z " ,
55 "published" : " 2026-04-21T20:38:44Z" ,
66 "aliases" : [
77 " CVE-2026-41066"
5555 {
5656 "type" : " WEB" ,
5757 "url" : " https://github.com/lxml/lxml/releases/tag/lxml-6.1.0"
58+ },
59+ {
60+ "type" : " WEB" ,
61+ "url" : " https://github.com/pypa/advisory-database/tree/main/vulns/lxml/PYSEC-2026-87.yaml"
5862 }
5963 ],
6064 "database_specific" : {
You can’t perform that action at this time.
0 commit comments