VulnerabilityCVE-2026-2297

CVE-2026-2297: The import hook in CPython that handles legacy *.pyc files (SourcelessFileLoader) is incorrectly handled in FileLoader (a base class) and so does not use io.open_code() to read the .pyc files. sys.aud

NVD/CVE · [email protected]3/4/2026, 11:16:11 PM

Summary

The import hook in CPython that handles legacy *.pyc files (SourcelessFileLoader) is incorrectly handled in FileLoader (a base class) and so does not use io.open_code() to read the .pyc files. sys.audit handlers for this audit event therefore do not fire.

Metadata

Article ID: #300160
Source: NVD/CVE
Scraped At: 3/7/2026, 6:11:57 PM
URL Hash: 7a0b91ab2364c158…

CVE-2026-2297: The import hook in CPython that handles legacy *.pyc files (SourcelessFileLoader) is incorrectly handled in FileLoader (a base class) and so does not use io.open_code() to read the .pyc files. sys.aud

Summary

Tags

Metadata