Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2021-29921

Опубликовано: 06 мая 2021
Источник: ubuntu
Приоритет: medium
CVSS2: 7.5
CVSS3: 9.8

Описание

In Python before 3,9,5, the ipaddress library mishandles leading zero characters in the octets of an IP address string. This (in some situations) allows attackers to bypass access control that is based on IP addresses.

РелизСтатусПримечание
bionic

not-affected

code not present
devel

DNE

esm-apps/focal

not-affected

code not present
esm-apps/jammy

not-affected

code not present
esm-infra-legacy/trusty

not-affected

code not present
esm-infra/bionic

not-affected

code not present
esm-infra/xenial

not-affected

code not present
focal

not-affected

code not present
groovy

not-affected

code not present
hirsute

not-affected

code not present

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

released

3.10.0~b1-3~21.04
impish

not-affected

3.10.0~b1-2
jammy

not-affected

3.10.0~b1-2
kinetic

not-affected

3.10.0~b1-2

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

not-affected

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

jammy

DNE

kinetic

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

not-affected

esm-infra/focal

DNE

esm-infra/xenial

not-affected

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

jammy

DNE

Показывать по

РелизСтатусПримечание
bionic

not-affected

3.6.9-1~18.04ubuntu1.4
devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

3.6.9-1~18.04ubuntu1.4
esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

jammy

DNE

Показывать по

РелизСтатусПримечание
bionic

not-affected

3.7.5-2~18.04.4
devel

DNE

esm-apps/bionic

not-affected

3.7.5-2~18.04.4
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

jammy

DNE

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needed
devel

DNE

esm-apps/bionic

released

3.8.0-3ubuntu1~18.04.2+esm2
esm-infra-legacy/trusty

DNE

esm-infra/focal

not-affected

3.8.10-0ubuntu1~20.04.1
focal

released

3.8.10-0ubuntu1~20.04.1
groovy

released

3.8.6-1ubuntu0.3
hirsute

DNE

impish

DNE

jammy

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-apps/focal

released

3.9.5-3~20.04.1
esm-infra-legacy/trusty

DNE

focal

released

3.9.5-3~20.04.1
groovy

released

3.9.5-3~20.10.1
hirsute

released

3.9.5-3~21.04
impish

released

3.9.5-2ubuntu1
jammy

DNE

kinetic

DNE

Показывать по

Ссылки на источники

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

redhat логотип

CVE-2021-29921

CVSS3: 9.1
redhat
около 4 лет назад

In Python before 3,9,5, the ipaddress library mishandles leading zero characters in the octets of an IP address string. This (in some situations) allows attackers to bypass access control that is based on IP addresses.

nvd логотип

CVE-2021-29921

CVSS3: 9.8
nvd
около 4 лет назад

In Python before 3,9,5, the ipaddress library mishandles leading zero characters in the octets of an IP address string. This (in some situations) allows attackers to bypass access control that is based on IP addresses.

debian логотип

CVE-2021-29921

CVSS3: 9.8
debian
около 4 лет назад

In Python before 3,9,5, the ipaddress library mishandles leading zero ...

suse-cvrf логотип

openSUSE-SU-2021:2940-1

suse-cvrf
почти 4 года назад

Security update for python39

suse-cvrf логотип

SUSE-SU-2021:2940-1

suse-cvrf
почти 4 года назад

Security update for python39

7.5 High

CVSS2

9.8 Critical

CVSS3

Уязвимость CVE-2021-29921