PyPi: Setriq

CVE-2020-26226

Transitive

Safety vulnerability ID: 43432

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at Nov 18, 2020 Updated at Mar 22, 2023
Scan your Python projects for vulnerabilities →

Advisory

Setriq 1.0.0 updates its dependency 'semantic-release' to v17.2.3 to include a security fix.
https://github.com/BenTenmann/setriq/commit/c1d4f380568933fb6e5b2c70a5e42ad36dbc103a

Affected package

setriq

Latest version: 1.6.4

Python package written in C++ for pairwise distance computation for sequences.

Affected versions

Fixed versions

Vulnerability changelog

Bug Fixes

* add --user to pip install ([1afecef](https://github.com/BenTenmann/setriq/commit/1afecefe6b9b485805eaeba385a42f28532bd697))
* add -e ([6f72f8c](https://github.com/BenTenmann/setriq/commit/6f72f8c6f1cb8f8e7e0d4451045cf2dbe9b940c3))
* add cstring header ([fddb517](https://github.com/BenTenmann/setriq/commit/fddb517050489ab3632b94a22b0514a93f75a597))
* add pip to install ([927c05f](https://github.com/BenTenmann/setriq/commit/927c05fad3a9770c493b3dbe3d1b0e2efdb67387))
* add pybind11 dependency to release job ([6d2a58d](https://github.com/BenTenmann/setriq/commit/6d2a58dbe7dd1d988c998c8d077e0f728199eadd))
* add pytest-cov ([f497b7a](https://github.com/BenTenmann/setriq/commit/f497b7a25dfafac4d26485fec08d0bb1b99eaa08))
* add semi-colo ([c19335b](https://github.com/BenTenmann/setriq/commit/c19335b587ebebd696b6a32e595998d3f8c741aa))
* change compile + link args ([97de5e0](https://github.com/BenTenmann/setriq/commit/97de5e0b8c457dd403a99db8d8441895b39d23e3))
* change compile flags based on platform ([9bf72d5](https://github.com/BenTenmann/setriq/commit/9bf72d5dd7b948799f231cbd8e8f8faa985d4c26))
* install libomp-dev ([133595f](https://github.com/BenTenmann/setriq/commit/133595f26a2b4342b731a5a667d15185c642dc98))
* new gcc comile args ([387e9ba](https://github.com/BenTenmann/setriq/commit/387e9ba2c20eda6483cf4de37b1b70721f3ea627))
* remove --user flag ([dadaba9](https://github.com/BenTenmann/setriq/commit/dadaba9717b0f01e75407760845e362aac87998b))
* restructure package ([1e87d25](https://github.com/BenTenmann/setriq/commit/1e87d2563c41811ad9d929f391a8e7df96a3b6d7))
* semrel git link ([468cce8](https://github.com/BenTenmann/setriq/commit/468cce871e39137999f3c4dee453a9eb14358988))
* semrel vulnerability ([c1d4f38](https://github.com/BenTenmann/setriq/commit/c1d4f380568933fb6e5b2c70a5e42ad36dbc103a))
* try newer python version ([e2b0e6d](https://github.com/BenTenmann/setriq/commit/e2b0e6d7cbc9cdfd5c894744a056aef6067a6d7a))
* update cci executor ([a3451bc](https://github.com/BenTenmann/setriq/commit/a3451bc5b552f51012baab00aac5fde6957a0fce))
* update compile args ([fd617a4](https://github.com/BenTenmann/setriq/commit/fd617a40bb41eaecf775271f4c0592970a332a15))
* update input key check tcr-dist ([45ece4e](https://github.com/BenTenmann/setriq/commit/45ece4eb931db406e441d204b34beb2e8e5c0c75))
* update setup.py package data ([b1dd192](https://github.com/BenTenmann/setriq/commit/b1dd192ab165b51dc4c52f9c33ecc95a289a484f))
* update tests ([15cacf3](https://github.com/BenTenmann/setriq/commit/15cacf3c41400841d9231fc57411300cfcd3c4ad))
* update to pip install -e ([62318e8](https://github.com/BenTenmann/setriq/commit/62318e8e405c330d678be206ffd3a8934c47e828))


Features

* add back CMakeList.txt for testing ([635a4b1](https://github.com/BenTenmann/setriq/commit/635a4b1e5ab8a92ab5267ff19f3899e1e98e7bb0))
* add cci ([ae45ee9](https://github.com/BenTenmann/setriq/commit/ae45ee91fac06578ca0613350946799db70f5665))
* add cdr-2.5 component to tcr-dist ([7c6aa32](https://github.com/BenTenmann/setriq/commit/7c6aa327f8311fbf0cb945205af69b56ccd43803))
* add convenience method on substitution matrix ([c14840b](https://github.com/BenTenmann/setriq/commit/c14840bce2eb4f55ac10ce511746a418180be0fa))
* add levenshtein ([c3e3524](https://github.com/BenTenmann/setriq/commit/c3e3524db7721815829ca4b48bf571ff6e0385e6))
* add levenshtein test ([198025e](https://github.com/BenTenmann/setriq/commit/198025eac366c2186d46caf2203996736cefa261))
* add license and delete CMakeList.txt ([673bb55](https://github.com/BenTenmann/setriq/commit/673bb55a7b85ba5dee0c29356d7a3f49366b0ae9))
* add logo ([d687e3c](https://github.com/BenTenmann/setriq/commit/d687e3c451b9cb594b28283001c8fc0534cdf90a))
* add modules and data ([5da7c0e](https://github.com/BenTenmann/setriq/commit/5da7c0ecd752582dc39b045071b87577c1f65497))
* add more distances tests ([9bf6215](https://github.com/BenTenmann/setriq/commit/9bf6215ee001ae03fcb986af301d18304bc64a67))
* add more distances tests++ ([400049d](https://github.com/BenTenmann/setriq/commit/400049ddc656750519e8c3de744fc876fa64113d))
* add more substitution tests ([c17c71c](https://github.com/BenTenmann/setriq/commit/c17c71c7d6cdaf7bec3753f913f7864a93fdabb0))
* add parallel processing ([8c72e23](https://github.com/BenTenmann/setriq/commit/8c72e23600bb23aebe02fcd059ede39416f3ed97))
* add semantic release ([3f022bd](https://github.com/BenTenmann/setriq/commit/3f022bd241af6991140eb036aa3a9f94c729d741))
* add substitution tests ([eec9b79](https://github.com/BenTenmann/setriq/commit/eec9b7984438ad17e37b55da5b9eac62ff3c51fd))
* add tcr sub-mat default ([293995d](https://github.com/BenTenmann/setriq/commit/293995d56b59811b0398d28a6925c8d283393ffc))
* add tcr-dist ([c2809cf](https://github.com/BenTenmann/setriq/commit/c2809cf5d134aaebbcdbb4026eacad95d5f69d65))
* add tests ([f4f842a](https://github.com/BenTenmann/setriq/commit/f4f842a4cf97c6ebb58e1c772a61c728c497161c))
* bind tcr_dist_component ([fcc26d3](https://github.com/BenTenmann/setriq/commit/fcc26d3cb721d36fd632bcddf9a1495122339a76))
* data-structure speed-bump ([25127f3](https://github.com/BenTenmann/setriq/commit/25127f35347855687256c4aeeece61b5b3361172))
* expose TcrDist to parent package ([858bc90](https://github.com/BenTenmann/setriq/commit/858bc9018c92f4469d986168abc69e71cfa36de3))
* initial commit ([a64f8ea](https://github.com/BenTenmann/setriq/commit/a64f8ead335f95a743e8a5c85c8a7ff1790fca46))

Resources

Use this package?

Scan your Python project for dependency vulnerabilities in two minutes

Scan your application

Severity Details

CVSS Base Score

HIGH 8.1

CVSS v3 Details

HIGH 8.1
Attack Vector (AV)
NETWORK
Attack Complexity (AC)
LOW
Privileges Required (PR)
NONE
User Interaction (UI)
REQUIRED
Scope (S)
UNCHANGED
Confidentiality Impact (C)
HIGH
Integrity Impact (I)
HIGH
Availability Availability (A)
NONE

CVSS v2 Details

MEDIUM 5.8
Access Vector (AV)
NETWORK
Access Complexity (AC)
MEDIUM
Authentication (Au)
NONE
Confidentiality Impact (C)
PARTIAL
Integrity Impact (I)
PARTIAL
Availability Impact (A)
NONE