vulnerability
Alma Linux: CVE-2020-14422: Moderate: python38:3.8 security, bug fix, and enhancement update (ALSA-2020-4641)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | Jun 18, 2020 | May 4, 2022 | Nov 14, 2024 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Jun 18, 2020
Added
May 4, 2022
Modified
Nov 14, 2024
Description
Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface classes, which might allow a remote attacker to cause a denial of service if an application is affected by the performance of a dictionary containing IPv4Interface or IPv6Interface objects, and this attacker can cause many dictionary entries to be created. This is fixed in: v3.5.10, v3.5.10rc1; v3.6.12; v3.7.9; v3.8.4, v3.8.4rc1, v3.8.5, v3.8.6, v3.8.6rc1; v3.9.0, v3.9.0b4, v3.9.0b5, v3.9.0rc1, v3.9.0rc2.
Solution(s)
alma-upgrade-python38-asn1cryptoalma-upgrade-python38-cffialma-upgrade-python38-chardetalma-upgrade-python38-cryptographyalma-upgrade-python38-cythonalma-upgrade-python38-idnaalma-upgrade-python38-markupsafealma-upgrade-python38-mod_wsgialma-upgrade-python38-psycopg2alma-upgrade-python38-psycopg2-docalma-upgrade-python38-psycopg2-testsalma-upgrade-python38-pycparseralma-upgrade-python38-pysocksalma-upgrade-python38-pytzalma-upgrade-python38-requestsalma-upgrade-python38-scipy
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.