This old unpatched Python security flaw could leave thousands of projects vulnerable

A fairly old unpatched security vulnerability in Python has resurfaced, prompting researchers to warn that hundreds of thousands of projects could be vulnerable to code execution.

Cybersecurity researchers at Trellix recently spotted (opens in new tab) CVE-2007-4559, a bug in the Python tarfile package, first discovered in 2007.