Debian 12 — python-marshmallow — multiple vulnerabilities (2 CVEs) — patch and remediation guide
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2018-17175 CVE-2025-68480 Upstream summary: In the marshmallow library before 2.15.1 and 3.x before 3.0.0b9 for Python, the schema "only" option treats an empty list as implying no "only" […]