{"schema_version":"1.6.0","id":"ROOT-APP-PYPI-CVE-2026-25087","modified":"2026-07-08T13:54:12Z","published":"2026-07-08T13:54:12Z","upstream":["CVE-2026-25087"],"summary":"CVE-2026-25087 in rootio-pyarrow - Patched by Root","details":"Root has patched CVE-2026-25087 in the rootio-pyarrow package for Root:PyPI. Multiple fixed versions available.","affected":[{"package":{"name":"rootio-pyarrow","ecosystem":"Root:PyPI"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"20.0.0+root.io.1"},{"fixed":"20.0.0+root.io.2"}]}],"database_specific":{"all_fixed_versions":["20.0.0+root.io.1","20.0.0+root.io.2"],"root_patch_version":"root.io.2","root_patched":true,"total_fixed_versions":2,"upstream_version":"20.0.0"}}],"database_specific":{"distro":"pypi","distro_version":"","severity":"MEDIUM","source":"Root"}}
