Количество 23
Количество 23
BDU:2024-06863
Уязвимость модуля zipfile интерпретатора языка программирования Python, позволяющая нарушителю вызвать отказ в обслуживании
CVE-2024-8088
There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive (for example, methods of "zipfile.Path" like "namelist()", "iterdir()", etc) the process can be put into an infinite loop with a maliciously crafted zip archive. This defect applies when reading only metadata or extracting the contents of the zip archive. Programs that are not handling user-controlled zip archives are not affected.
CVE-2024-8088
There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive (for example, methods of "zipfile.Path" like "namelist()", "iterdir()", etc) the process can be put into an infinite loop with a maliciously crafted zip archive. This defect applies when reading only metadata or extracting the contents of the zip archive. Programs that are not handling user-controlled zip archives are not affected.
CVE-2024-8088
There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive (for example, methods of "zipfile.Path" like "namelist()", "iterdir()", etc) the process can be put into an infinite loop with a maliciously crafted zip archive. This defect applies when reading only metadata or extracting the contents of the zip archive. Programs that are not handling user-controlled zip archives are not affected.
CVE-2024-8088
CVE-2024-8088
There is a HIGH severity vulnerability affecting the CPython "zipfile" ...
ROS-20240904-07
Уязвимость python3
GHSA-q98g-hxg3-268c
There is a HIGH severity vulnerability affecting the CPython "zipfile" module. When iterating over names of entries in a zip archive (for example, methods of "zipfile.ZipFile" like "namelist()", "iterdir()", "extractall()", etc) the process can be put into an infinite loop with a maliciously crafted zip archive. This defect applies when reading only metadata or extracting the contents of the zip archive. Programs that are not handling user-controlled zip archives are not affected.
ELSA-2024-9371
ELSA-2024-9371: python3.9 security update (MODERATE)
RLSA-2024:9192
Moderate: python3.11 security update
ELSA-2024-9192
ELSA-2024-9192: python3.11 security update (MODERATE)
SUSE-SU-2024:3427-1
Security update for python311
SUSE-SU-2024:3418-1
Security update for python311
SUSE-SU-2024:3411-1
Security update for python39
SUSE-SU-2024:3357-1
Security update for python310
RLSA-2024:9190
Moderate: python3.12 security update
RLSA-2024:6962
Moderate: python3.11 security update
RLSA-2024:6961
Moderate: python3.12 security update
ELSA-2024-9190
ELSA-2024-9190: python3.12 security update (MODERATE)
ELSA-2024-6962
ELSA-2024-6962: python3.11 security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-06863 Уязвимость модуля zipfile интерпретатора языка программирования Python, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 5.3 | 0% Низкий | около 1 года назад |
 | CVE-2024-8088 There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive (for example, methods of "zipfile.Path" like "namelist()", "iterdir()", etc) the process can be put into an infinite loop with a maliciously crafted zip archive. This defect applies when reading only metadata or extracting the contents of the zip archive. Programs that are not handling user-controlled zip archives are not affected. | 0% Низкий | около 1 года назад | |
 | CVE-2024-8088 There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive (for example, methods of "zipfile.Path" like "namelist()", "iterdir()", etc) the process can be put into an infinite loop with a maliciously crafted zip archive. This defect applies when reading only metadata or extracting the contents of the zip archive. Programs that are not handling user-controlled zip archives are not affected. | CVSS3: 5.3 | 0% Низкий | около 1 года назад |
 | CVE-2024-8088 There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive (for example, methods of "zipfile.Path" like "namelist()", "iterdir()", etc) the process can be put into an infinite loop with a maliciously crafted zip archive. This defect applies when reading only metadata or extracting the contents of the zip archive. Programs that are not handling user-controlled zip archives are not affected. | 0% Низкий | около 1 года назад | |
 | 0% Низкий | около 1 года назад | ||
| CVE-2024-8088 There is a HIGH severity vulnerability affecting the CPython "zipfile" ... | 0% Низкий | около 1 года назад | |
 | ROS-20240904-07 Уязвимость python3 | CVSS3: 5.3 | 0% Низкий | около 1 года назад |
| GHSA-q98g-hxg3-268c There is a HIGH severity vulnerability affecting the CPython "zipfile" module. When iterating over names of entries in a zip archive (for example, methods of "zipfile.ZipFile" like "namelist()", "iterdir()", "extractall()", etc) the process can be put into an infinite loop with a maliciously crafted zip archive. This defect applies when reading only metadata or extracting the contents of the zip archive. Programs that are not handling user-controlled zip archives are not affected. | CVSS3: 7.5 | 0% Низкий | около 1 года назад |
| ELSA-2024-9371 ELSA-2024-9371: python3.9 security update (MODERATE) | 12 месяцев назад | ||
 | RLSA-2024:9192 Moderate: python3.11 security update | 8 месяцев назад | ||
| ELSA-2024-9192 ELSA-2024-9192: python3.11 security update (MODERATE) | 12 месяцев назад | ||
 | SUSE-SU-2024:3427-1 Security update for python311 | около 1 года назад | ||
| SUSE-SU-2024:3418-1 Security update for python311 | около 1 года назад | ||
| SUSE-SU-2024:3411-1 Security update for python39 | около 1 года назад | ||
| SUSE-SU-2024:3357-1 Security update for python310 | около 1 года назад | ||
| RLSA-2024:9190 Moderate: python3.12 security update | 8 месяцев назад | ||
| RLSA-2024:6962 Moderate: python3.11 security update | около 1 года назад | ||
| RLSA-2024:6961 Moderate: python3.12 security update | около 1 года назад | ||
| ELSA-2024-9190 ELSA-2024-9190: python3.12 security update (MODERATE) | 12 месяцев назад | ||
| ELSA-2024-6962 ELSA-2024-6962: python3.11 security update (MODERATE) | около 1 года назад |
Уязвимостей на страницу