pkg:PyPI/pyarrow

All known vulnerabilities

• CRITICAL9.8CVE-2023-47248PyArrow: Arbitrary code execution when loading a malicious data file
  >= 0.14.0, < 14.0.1
• CRITICAL9.8CVE-2023-47248PyArrow: Arbitrary code execution when loading a malicious data file
  >= 0.14.0, < 14.0.1
• HIGH7.5CVE-2019-12410Missing Initialization of Resource in Apache Arrow
  >= 0.12.0, < 0.15.1
• HIGH7.5Missing Initialization of Resource in Apache Arrow
  >= 0.12.0, < 0.15.0
• HIGH7.5Missing Initialization of Resource in Apache Arrow
  >= 0.14.0, < 0.15.0
• HIGH7.5Missing Initialization of Resource in Apache Arrow
  >= 0.14.0, < 0.15.1
• HIGH7.0Apache Arrow: Potential use-after-free when reading IPC file with pre-buffering
  >= 15.0.0, < 23.0.1
• HIGH7.0Apache Arrow: Potential use-after-free when reading IPC file with pre-buffering
  >= 15.0.0, < 23.0.1
• —Deserialization of untrusted data in IPC and Parquet readers in the Apache Arrow R package versions 4.0.0 through 16.1.0 allows arbitrary c…
  from 0, < 801de2fbcf5bcbce0c019ed4b35ff3fc863b141b | >= 4.0.0, < 17.0.0