[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2009-4134":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":28,"related":29,"reserved_at":9,"published_at":30,"modified_at":31,"state":32,"summary":33,"references_raw":42,"kevs":119,"epss":120,"epss_history":123,"metrics":376,"affected":381},"CVE-2009-4134","Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to cause a denial of service (application crash) via a large ZSIZE value in a black-and-white (aka B/W) RGB image that triggers an invalid pointer dereference.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-787","Out-of-bounds Write","The product writes data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base","High",[],[],[],[],[24,26],{"_key":25},"RHSA-2011:0027",{"_key":27},"RHSA-2011:0260",[],[],"2010-05-27T19:00:00.000Z","2024-08-07T06:54:09.795Z","Modified",{"cisa_kev":34,"cisa_ransomware":34,"cisa_vendor":9,"epss_severity":35,"epss_score":36,"severity":37,"severity_score":38,"severity_version":39,"severity_source":40,"severity_vector":41,"severity_status":32},false,"low",0.02612,"medium",5,"v2.0","nvd","AV:N/AC:L/Au:N/C:N/I:N/A:P",[43,51,56,62,66,70,77,81,87,92,96,101,106,111,115],{"url":44,"sources":45,"tags":47},"http://secunia.com/advisories/43068",[46,40],"cve.org",[48,49,50],"Third Party Advisory","X Refsource SECUNIA","Broken Link",{"url":52,"sources":53,"tags":54},"http://support.apple.com/kb/HT4435",[46,40],[55,48],"X Refsource CONFIRM",{"url":57,"sources":58,"tags":59},"http://www.vupen.com/english/advisories/2011/0212",[46,40],[60,61,48],"VDB Entry","X Refsource VUPEN",{"url":63,"sources":64,"tags":65},"http://secunia.com/advisories/43364",[46,40],[48,49,50],{"url":67,"sources":68,"tags":69},"http://www.vupen.com/english/advisories/2011/0413",[46,40],[60,61,48],{"url":71,"sources":72,"tags":73},"http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html",[46,40],[74,75,76],"Vendor Advisory","X Refsource APPLE","Mailing List",{"url":78,"sources":79,"tags":80},"http://www.vupen.com/english/advisories/2011/0122",[46,40],[60,61,48],{"url":82,"sources":83,"tags":84},"https://bugzilla.redhat.com/show_bug.cgi?id=541698",[46,40],[55,85,86],"Issue Tracking","Patch",{"url":88,"sources":89,"tags":90},"http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html",[46,40],[74,91,48],"X Refsource SUSE",{"url":93,"sources":94,"tags":95},"http://secunia.com/advisories/42888",[46,40],[48,49,50],{"url":97,"sources":98,"tags":99},"http://www.securityfocus.com/bid/40361",[46,40],[60,100,48],"X Refsource BID",{"url":102,"sources":103,"tags":104},"http://www.redhat.com/support/errata/RHSA-2011-0027.html",[46,40],[74,105,48],"X Refsource REDHAT",{"url":107,"sources":108,"tags":109},"http://www.mandriva.com/security/advisories?name=MDVSA-2010:215",[46,40],[74,110,50],"X Refsource MANDRIVA",{"url":112,"sources":113,"tags":114},"http://bugs.python.org/issue8678",[46,40],[55,86],{"url":116,"sources":117,"tags":118},"http://www.redhat.com/support/errata/RHSA-2011-0260.html",[46,40],[74,105,48],[],{"date":121,"score":36,"percentile":122},"2026-06-04",0.85927,[124,127,130,133,136,139,142,144,147,150,153,156,159,162,164,167,170,173,176,178,181,184,186,189,191,194,197,200,203,206,208,211,214,217,220,222,225,228,231,234,237,240,243,246,248,251,254,257,260,262,265,268,271,273,276,279,282,284,287,290,293,296,299,301,303,305,308,310,313,315,318,321,324,326,329,332,335,337,340,343,346,349,352,355,358,361,364,367,370,373],{"date":125,"score":36,"percentile":126},"2025-11-04",0.85123,{"date":128,"score":36,"percentile":129},"2025-11-05",0.85126,{"date":131,"score":36,"percentile":132},"2025-11-06",0.85129,{"date":134,"score":36,"percentile":135},"2025-11-07",0.85136,{"date":137,"score":36,"percentile":138},"2025-11-08",0.8514,{"date":140,"score":36,"percentile":141},"2025-11-09",0.85135,{"date":143,"score":36,"percentile":132},"2025-11-10",{"date":145,"score":36,"percentile":146},"2025-11-11",0.85134,{"date":148,"score":36,"percentile":149},"2025-11-12",0.85146,{"date":151,"score":36,"percentile":152},"2025-11-13",0.85152,{"date":154,"score":36,"percentile":155},"2025-11-14",0.85154,{"date":157,"score":36,"percentile":158},"2025-11-15",0.85148,{"date":160,"score":36,"percentile":161},"2025-11-16",0.85147,{"date":163,"score":36,"percentile":146},"2025-11-17",{"date":165,"score":36,"percentile":166},"2025-11-18",0.84333,{"date":168,"score":36,"percentile":169},"2025-11-19",0.84337,{"date":171,"score":36,"percentile":172},"2025-11-20",0.84344,{"date":174,"score":36,"percentile":175},"2025-11-21",0.8515,{"date":177,"score":36,"percentile":149},"2025-11-22",{"date":179,"score":36,"percentile":180},"2025-11-23",0.85137,{"date":182,"score":36,"percentile":183},"2025-11-24",0.85139,{"date":185,"score":36,"percentile":135},"2025-11-25",{"date":187,"score":36,"percentile":188},"2025-11-26",0.85138,{"date":190,"score":36,"percentile":188},"2025-11-27",{"date":192,"score":36,"percentile":193},"2025-11-28",0.85121,{"date":195,"score":36,"percentile":196},"2025-11-29",0.85165,{"date":198,"score":36,"percentile":199},"2025-11-30",0.85166,{"date":201,"score":36,"percentile":202},"2025-12-01",0.85228,{"date":204,"score":36,"percentile":205},"2025-12-02",0.85233,{"date":207,"score":36,"percentile":205},"2025-12-03",{"date":209,"score":36,"percentile":210},"2025-12-04",0.85168,{"date":212,"score":36,"percentile":213},"2025-12-05",0.85173,{"date":215,"score":36,"percentile":216},"2025-12-06",0.8517,{"date":218,"score":36,"percentile":219},"2025-12-07",0.85158,{"date":221,"score":36,"percentile":219},"2025-12-08",{"date":223,"score":36,"percentile":224},"2025-12-09",0.85164,{"date":226,"score":36,"percentile":227},"2025-12-10",0.85187,{"date":229,"score":36,"percentile":230},"2025-12-11",0.85193,{"date":232,"score":36,"percentile":233},"2025-12-12",0.85199,{"date":235,"score":36,"percentile":236},"2025-12-13",0.85197,{"date":238,"score":36,"percentile":239},"2025-12-14",0.85192,{"date":241,"score":36,"percentile":242},"2025-12-15",0.85188,{"date":244,"score":36,"percentile":245},"2025-12-16",0.85195,{"date":247,"score":36,"percentile":233},"2025-12-17",{"date":249,"score":36,"percentile":250},"2025-12-18",0.85203,{"date":252,"score":36,"percentile":253},"2025-12-19",0.85207,{"date":255,"score":36,"percentile":256},"2025-12-20",0.852,{"date":258,"score":36,"percentile":259},"2025-12-21",0.85204,{"date":261,"score":36,"percentile":250},"2025-12-22",{"date":263,"score":36,"percentile":264},"2025-12-23",0.85209,{"date":266,"score":36,"percentile":267},"2025-12-24",0.85215,{"date":269,"score":36,"percentile":270},"2025-12-25",0.8523,{"date":272,"score":36,"percentile":205},"2025-12-26",{"date":274,"score":36,"percentile":275},"2025-12-27",0.85282,{"date":277,"score":36,"percentile":278},"2025-12-28",0.85224,{"date":280,"score":36,"percentile":281},"2025-12-29",0.85223,{"date":283,"score":36,"percentile":270},"2025-12-30",{"date":285,"score":36,"percentile":286},"2025-12-31",0.8524,{"date":288,"score":36,"percentile":289},"2026-01-01",0.85299,{"date":291,"score":36,"percentile":292},"2026-01-02",0.85298,{"date":294,"score":36,"percentile":295},"2026-01-03",0.85296,{"date":297,"score":36,"percentile":298},"2026-01-04",0.85232,{"date":300,"score":36,"percentile":278},"2026-01-05",{"date":302,"score":36,"percentile":270},"2026-01-06",{"date":304,"score":36,"percentile":270},"2026-01-07",{"date":306,"score":36,"percentile":307},"2026-01-08",0.85238,{"date":309,"score":36,"percentile":286},"2026-01-09",{"date":311,"score":36,"percentile":312},"2026-01-10",0.85237,{"date":314,"score":36,"percentile":298},"2026-01-11",{"date":316,"score":36,"percentile":317},"2026-01-12",0.85227,{"date":319,"score":36,"percentile":320},"2026-01-13",0.85221,{"date":322,"score":36,"percentile":323},"2026-01-14",0.85239,{"date":325,"score":36,"percentile":307},"2026-01-15",{"date":327,"score":36,"percentile":328},"2026-01-16",0.85243,{"date":330,"score":36,"percentile":331},"2026-01-17",0.85249,{"date":333,"score":36,"percentile":334},"2026-01-18",0.85244,{"date":336,"score":36,"percentile":323},"2026-01-19",{"date":338,"score":36,"percentile":339},"2026-01-20",0.85242,{"date":341,"score":36,"percentile":342},"2026-01-21",0.85247,{"date":344,"score":36,"percentile":345},"2026-01-22",0.85251,{"date":347,"score":36,"percentile":348},"2026-01-23",0.85262,{"date":350,"score":36,"percentile":351},"2026-01-24",0.85272,{"date":353,"score":36,"percentile":354},"2026-01-25",0.85268,{"date":356,"score":36,"percentile":357},"2026-01-26",0.85265,{"date":359,"score":36,"percentile":360},"2026-01-27",0.8527,{"date":362,"score":36,"percentile":363},"2026-01-28",0.85274,{"date":365,"score":36,"percentile":366},"2026-01-29",0.85277,{"date":368,"score":36,"percentile":369},"2026-01-30",0.85279,{"date":371,"score":36,"percentile":372},"2026-01-31",0.8528,{"date":374,"score":36,"percentile":375},"2026-02-01",0.85345,[377],{"source":40,"cvss_v2_0":378,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":38,"baseSeverity":9,"vectorString":41,"impactScore":379,"exploitabilityScore":380},2.9,10,[382],{"ecosystem":9,"name":383,"vendor":383,"product":383,"cpe_part":384,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":385},"python","a",[386],{"version":387,"is_range":34,"range_type":388,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.5.0","cpe"]