Python 3.7.0 Beta1

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:python:python:3.7.0:beta1:*:*:*:*:*:*

part: a version: 3.7.0 update: beta1

VendorPython (b57ad93a-6195-5192-9423-6cfad6044a8b)
ProductPython (fc328eef-0a85-5ddb-b629-b8866ec518c8)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:deb/debian/python purl2cpe 2026-06-01 10:16:29.474559
pkg:github/python/cpython purl2cpe 2026-06-01 10:16:29.474560
pkg:python/python purl2cpe 2026-06-01 10:16:29.474561
pkg:rpm/opensuse/python purl2cpe 2026-06-01 10:16:29.474563

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2018-1061 vulnerable 2026-06-03 14:38:30.169321 Details available
MEDIUM (6.5)
python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.
Published: 2018-06-19T12:00:00.000Z
Updated: 2024-08-05T03:51:48.415Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-1000117 vulnerable 2026-06-03 14:37:52.319904 Details available
Python Software Foundation CPython version From 3.2 until 3.6.4 on Windows contains a Buffer Overflow vulnerability in os.symlink() function on Windows that can result in Arbitrary code execution, likely escalation of privilege. This attack appears to be exploitable via a python script that creates a symlink with an attacker controlled name or location. This vulnerability appears to have been fixed in 3.7.0 and 3.6.5.
Published: 2018-03-07T14:00:00.000Z
Updated: 2024-09-17T01:37:10.621Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.