Количество 10
Количество 10
CVE-2024-5569
A Denial of Service (DoS) vulnerability exists in the jaraco/zipp library, affecting all versions prior to 3.19.1. The vulnerability is triggered when processing a specially crafted zip file that leads to an infinite loop. This issue also impacts the zipfile module of CPython, as features from the third-party zipp library are later merged into CPython, and the affected code is identical in both projects. The infinite loop can be initiated through the use of functions affecting the `Path` module in both zipp and zipfile, such as `joinpath`, the overloaded division operator, and `iterdir`. Although the infinite loop is not resource exhaustive, it prevents the application from responding. The vulnerability was addressed in version 3.19.1 of jaraco/zipp.
CVE-2024-5569
A Denial of Service (DoS) vulnerability exists in the jaraco/zipp library, affecting all versions prior to 3.19.1. The vulnerability is triggered when processing a specially crafted zip file that leads to an infinite loop. This issue also impacts the zipfile module of CPython, as features from the third-party zipp library are later merged into CPython, and the affected code is identical in both projects. The infinite loop can be initiated through the use of functions affecting the `Path` module in both zipp and zipfile, such as `joinpath`, the overloaded division operator, and `iterdir`. Although the infinite loop is not resource exhaustive, it prevents the application from responding. The vulnerability was addressed in version 3.19.1 of jaraco/zipp.
CVE-2024-5569
A Denial of Service (DoS) vulnerability exists in the jaraco/zipp library, affecting all versions prior to 3.19.1. The vulnerability is triggered when processing a specially crafted zip file that leads to an infinite loop. This issue also impacts the zipfile module of CPython, as features from the third-party zipp library are later merged into CPython, and the affected code is identical in both projects. The infinite loop can be initiated through the use of functions affecting the `Path` module in both zipp and zipfile, such as `joinpath`, the overloaded division operator, and `iterdir`. Although the infinite loop is not resource exhaustive, it prevents the application from responding. The vulnerability was addressed in version 3.19.1 of jaraco/zipp.
CVE-2024-5569
CVE-2024-5569
A Denial of Service (DoS) vulnerability exists in the jaraco/zipp libr ...
SUSE-SU-2024:2400-1
Security update for python-zipp
SUSE-SU-2024:2397-1
Security update for python-zipp
ROS-20240719-03
Уязвимость python3-zipp
GHSA-jfmj-5v4g-7637
zipp Denial of Service vulnerability
BDU:2024-05789
Уязвимость библиотеки jaraco/zipp совместимой с pathlib оболочки объекта Zipfile, позволяющая нарушителю вызвать отказ в обслуживании
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-5569 A Denial of Service (DoS) vulnerability exists in the jaraco/zipp library, affecting all versions prior to 3.19.1. The vulnerability is triggered when processing a specially crafted zip file that leads to an infinite loop. This issue also impacts the zipfile module of CPython, as features from the third-party zipp library are later merged into CPython, and the affected code is identical in both projects. The infinite loop can be initiated through the use of functions affecting the `Path` module in both zipp and zipfile, such as `joinpath`, the overloaded division operator, and `iterdir`. Although the infinite loop is not resource exhaustive, it prevents the application from responding. The vulnerability was addressed in version 3.19.1 of jaraco/zipp. | CVSS3: 6.2 | 0% Низкий | 12 месяцев назад |
 | CVE-2024-5569 A Denial of Service (DoS) vulnerability exists in the jaraco/zipp library, affecting all versions prior to 3.19.1. The vulnerability is triggered when processing a specially crafted zip file that leads to an infinite loop. This issue also impacts the zipfile module of CPython, as features from the third-party zipp library are later merged into CPython, and the affected code is identical in both projects. The infinite loop can be initiated through the use of functions affecting the `Path` module in both zipp and zipfile, such as `joinpath`, the overloaded division operator, and `iterdir`. Although the infinite loop is not resource exhaustive, it prevents the application from responding. The vulnerability was addressed in version 3.19.1 of jaraco/zipp. | CVSS3: 6.2 | 0% Низкий | 12 месяцев назад |
 | CVE-2024-5569 A Denial of Service (DoS) vulnerability exists in the jaraco/zipp library, affecting all versions prior to 3.19.1. The vulnerability is triggered when processing a specially crafted zip file that leads to an infinite loop. This issue also impacts the zipfile module of CPython, as features from the third-party zipp library are later merged into CPython, and the affected code is identical in both projects. The infinite loop can be initiated through the use of functions affecting the `Path` module in both zipp and zipfile, such as `joinpath`, the overloaded division operator, and `iterdir`. Although the infinite loop is not resource exhaustive, it prevents the application from responding. The vulnerability was addressed in version 3.19.1 of jaraco/zipp. | CVSS3: 6.2 | 0% Низкий | 12 месяцев назад |
 | CVSS3: 6.2 | 0% Низкий | 6 месяцев назад | |
| CVE-2024-5569 A Denial of Service (DoS) vulnerability exists in the jaraco/zipp libr ... | CVSS3: 6.2 | 0% Низкий | 12 месяцев назад |
 | SUSE-SU-2024:2400-1 Security update for python-zipp | 0% Низкий | 12 месяцев назад | |
| SUSE-SU-2024:2397-1 Security update for python-zipp | 0% Низкий | 12 месяцев назад | |
 | ROS-20240719-03 Уязвимость python3-zipp | CVSS3: 6.2 | 0% Низкий | 11 месяцев назад |
| GHSA-jfmj-5v4g-7637 zipp Denial of Service vulnerability | CVSS3: 6.2 | 0% Низкий | 12 месяцев назад |
 | BDU:2024-05789 Уязвимость библиотеки jaraco/zipp совместимой с pathlib оболочки объекта Zipfile, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 6.2 | 0% Низкий | 12 месяцев назад |
Уязвимостей на страницу