Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

pypi vyper Security Advisories

Loading...
Low
GSA_kwCzR0hTQS00aHdxLTRjcG0tOHZteM4AA5gr
Vyper's `extract32` can ready dirty memory
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: about 1 month ago
Low
GSA_kwCzR0hTQS05cDhyLTR4cDQtZ3c1d84AA5gq
Vyper's `_abi_decode` vulnerable to Memory Overflow
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: about 1 month ago
Critical
GSA_kwCzR0hTQS01MnhxLWo3djktdjR2Ms4AA5JI
Vyper array negative index vulnerability
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: about 2 months ago
Low
GSA_kwCzR0hTQS02ODQ1LXh3MjItZmZ4ds4AA5Ef
Vyper sha3 codegen bug
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: about 2 months ago
Low
GSA_kwCzR0hTQS1ncDN3LTJ2Mm0tcDY4Ns4AA5Bo
Vyper's external calls can overflow return data to return input buffer
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: about 2 months ago
Critical
GSA_kwCzR0hTQS05eDdmLWd3eHEtNmYyY84AA4_y
Vyper's bounds check on built-in `slice()` function can be overflowed
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: about 2 months ago
Moderate
GSA_kwCzR0hTQS14MmMyLXEzMnctNHc2bc4AA48w
Vyper's raw_call `value=` kwargs not disabled for static and delegate calls
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: about 2 months ago
High
GSA_kwCzR0hTQS0ycTh2LTNncXEtNGY4cM4AA4kr
concat built-in can corrupt memory in vyper
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 2 months ago
High
GSA_kwCzR0hTQS02bTk3LTc1MjctbWg3NM4AA3uZ
incorrect storage layout for contracts containing large arrays
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 4 months ago
Moderate
GSA_kwCzR0hTQS1jeDJxLWhmeHItcmo5N84AA2C3
Vyper's `_abi_decode` input not validated in complex expressions
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 6 months ago
High
GSA_kwCzR0hTQS1jNjQ3LXB4bTItYzUyd84AA1-0
Vyper vulnerable to memory corruption in certain builtins utilizing `msize`
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 6 months ago
Moderate
GSA_kwCzR0hTQS0zaGcyLXI3NXgtZzY5bc4AA17W
Vyper has incorrect re-entrancy lock when key is empty string
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 6 months ago
Moderate
GSA_kwCzR0hTQS00aGc0LTltZjUtd3h4cc4AA1rF
incorrect order of evaluation of side effects for some builtins
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS1nMnhoLWM0MjYtdjhtZs4AA1rE
Vyper: reversed order of side effects for some operations
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS01ODI0LWNtM3gtM2MzOM4AA1LT
Vyper has incorrectly allocated named re-entrancy locks
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 8 months ago
Moderate
GSA_kwCzR0hTQS1mNXg2LTdxZ3AtamhmM84AA04g
ecrecover can return undefined data if signature does not verify
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 8 months ago
Low
GSA_kwCzR0hTQS12eG1tLWN3aDItcTc2Ms4AAzbG
Vyper's nonpayable default functions are sometimes payable
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 10 months ago
High
GSA_kwCzR0hTQS0zcDM3LTM2MzYtcTh3ds4AAzUH
Vyper vulnerable to OOB DynArray access when array is on both LHS and RHS of an assignment
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 11 months ago
High
GSA_kwCzR0hTQS02cjhxLXBmcHYtN2Nnas4AAzUG
Vyper vulnerable to integer overflow in loop
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 11 months ago
High
GSA_kwCzR0hTQS1waDl4LTR2YzktbTM5Z84AAzUF
Vyper vulnerable to incorrect ordering of arguments for kwargs passed to internal calls
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 11 months ago
High
GSA_kwCzR0hTQS1tZ3Y4LWdnZ3ctbXJnNs4AAzGx
vyper vulnerable to storage allocator overflow
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 11 months ago
High
GSA_kwCzR0hTQS13OWcyLTN3N3AtNzJnOc4AAy87
Incorrect success value returned in vyper
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: 11 months ago
High
GSA_kwCzR0hTQS00djlxLWNncHctY2YzOM4AArZb
Multiple evaluation of contract address in call in vyper
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1qMng2LTkzMjMtZnA3aM0_oA
Integer bounds error in Vyper
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS00bXJ4LTZmeG0tOGpwZ809qA
Buffer Overflow in vyper
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS03dnJtLTNqYzgtNXd3bc04Jg
Incorrect Comparison in Vyper
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS14djh4LXByNGgtNzNqds0WPA
Memory corruption when returning a literal struct with a private call inside of it
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1jN3ByLTM0M3ItNWM0Ns0WLg
missing clamps for decimal args in external functions
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdmOTItcnI2dy1jcTY0
Storage corruption due to variables overwritten by re-entrancy locks
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIyd2MtYzl3ai02cTJ2
VVE-2021-0001: Memory corruption using function calls within arrays
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: almost 3 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM3NW0tNWZ2di14cTIz
VVE-2021-0002: Incorrect `returndatasize` when using simple forwarder proxies deployed prior to EIP-1167 adoption
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: almost 3 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1yNnItbXZ3NC03MzZn
Vyper interfaces returning integer types less than 256 bits can be manipulated if uint256 is used
Ecosystems: pypi
Packages: vyper
Source: GitHub Advisory Database
Published: about 4 years ago
Statistics
Advisories: 17,213
Packages: 7,992
Repositories: 1
Ecosystems: 12
Filter by Package
tensorflow 432 tensorflow-cpu 387 tensorflow-gpu 384 django 81 apache-airflow 77 ansible 57 apache-superset 48 rdiffweb 42 Pillow 41 plone 38 Plone 36 matrix-synapse 34 vyper 32 opencv-contrib-python 30 opencv-python 30 mlflow 25 Django 19 langchain 17 PaddlePaddle 17 cobbler 16 notebook 15 cryptography 15 paddlepaddle 15 modoboa 14 pyload-ng 13 nova 13 pyftpdlib 13 pillow 13 OctoPrint 12 vantage6 12 onionshare-cli 11 gradio 11 twisted 11 calibreweb 11 urllib3 11 glance 11 keystone 11 salt 10 Flask-AppBuilder 10 aiohttp 9 wagtail 9 zope 9 Zope 9 kiwitcms 9 opencv-python-headless 9 opencv-contrib-python-headless 9 ethyca-fides 9 waitress 9 numpy 8 neutron 8 label-studio 8 aubio 8 lief 7 scrapy 7 jupyter-server 7 moin 7 swift 7 pip 7 matrix-sydent 7 python-keystoneclient 7 nautobot 7 pysaml2 7 lxml 6 ipython 6 tuf 6 graphite-web 6 inventree 6 web2py 6 apache-airflow-providers-apache-hive 6 mailman 6 Zope2 6 requests 5 horizon 5 Products.CMFPlone 5 pyspark 5 sentry 5 python-gnupg 5 bleach 5 ckan 5 pgadmin4 5 paramiko 5 mindsdb 5 whoogle-search 5 feedparser 5 bottle 4 werkzeug 4 Pygments 4 httpie 4 omero-web 4 ansible-core 4 qutebrowser 4 reportlab 4 markdown2 4 Flask-Security-Too 4 starlette 4 trytond 4 datasette 4 Jinja2 4 nltk 4 esphome 4 oauthenticator 4 pretix 4 grpc 4 grpcio 4 awsiotsdk 4 aws-iot-device-sdk-v2 4 software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk 4 GitPython 4 keylime 4 PyPDF2 4 nvflare 4 saleor 4 FreeTAKServer-UI 4 indy-node 3 pyarrow 3 fava 3 asyncssh 3 django-helpdesk 3 ray 3 rsa 3 apache-iotdb 3 asyncua 3 wger 3 keyring 3 roundup 3 streamlit 3 tornado 3 indico 3 openvpn-monitor 3 torchserve 3 quokka 3 jwcrypto 3 yt-dlp 3 Products.PluggableAuthService 3 apache-airflow-providers-apache-spark 3 pywasm3 3 barbican 3 Weblate 3 ecdsa 3 ujson 3 pyyaml 3 flask 3 jupyterhub 3 bitlyshortener 3 apache-libcloud 3 gerapy 3 sickrage 3 tripleo-heat-templates 3 transformers 3 cinder 3 io.grpc:grpc-protobuf 3 mistune 3 clearml 3 protobuf 3 plone.app.theming 3 plone.app.dexterity 3 ansible-runner 3 Keystone 3 poetry 3 docassemble.webapp 3 copyparty 3 slixmpp 3 Werkzeug 3 localstack 3 plone.supermodel 3 onnx 3 jupyterlab 3 mitmproxy 3 pandasai 3 plone.app.event 3 mayan-edms 3 oauth2 2 plone.app.contenttypes 2 tripleo-ansible 2 bikeshed 2 aiohttp-session 2 snowflake-connector-python 2 pymatgen 2 apache-airflow-providers-apache-drill 2 apache-submarine 2 scancodeio 2 python-apt 2 shuup 2 ryu 2 django-unicorn 2 piccolo 2 python-libnmap 2 Mezzanine 2 tlslite-ng 2 apache-airflow-providers-odbc 2 org.apache.spark:spark-core 2 pyopenssl 2 uvicorn 2 ctx 2 superset 2 aws-encryption-sdk-cli 2 wasm3 2 mercurial 2 SQLAlchemy 2 jinja2 2