CVE-2022-40899

Опубликовано: 23 дек. 2022

Источник: debian

Описание

An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie header from malicious web server.

Пакеты

Пакет	Статус	Релиз	Тип
python-future	removed		package
python-future	no-dsa	bookworm	package
python-future	no-dsa	bullseye	package
python-future	no-dsa	buster	package

Примечания

https://github.com/PythonCharmers/python-future/pull/610
https://github.com/PythonCharmers/python-future/commit/c91d70b34ef0402aef3e9d04364ba98509dca76f (v0.18.3)

Связанные уязвимости

CVE-2022-40899

CVSS3: 7.5

ubuntu

почти 3 года назад

An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie header from malicious web server.

CVE-2022-40899

CVSS3: 7.5

redhat

почти 3 года назад

An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie header from malicious web server.

CVE-2022-40899

CVSS3: 7.5

nvd

почти 3 года назад

An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie header from malicious web server.

SUSE-SU-2023:0080-1

suse-cvrf

почти 3 года назад

Security update for python-future

SUSE-SU-2023:0079-1

suse-cvrf

почти 3 года назад

Security update for python-future