vulnerability
CentOS Linux: CVE-2020-14422: Moderate: python3 security and bug fix update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | 2020-06-18 | 2020-11-05 | 2023-05-25 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
2020-06-18
Added
2020-11-05
Modified
2023-05-25
Description
Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface classes, which might allow a remote attacker to cause a denial of service if an application is affected by the performance of a dictionary containing IPv4Interface or IPv6Interface objects, and this attacker can cause many dictionary entries to be created. This is fixed in: v3.5.10, v3.5.10rc1; v3.6.12; v3.7.9; v3.8.4, v3.8.4rc1, v3.8.5, v3.8.6, v3.8.6rc1; v3.9.0, v3.9.0b4, v3.9.0b5, v3.9.0rc1, v3.9.0rc2.
Solution(s)
centos-upgrade-cython-debugsourcecentos-upgrade-numpy-debugsourcecentos-upgrade-platform-pythoncentos-upgrade-platform-python-debugcentos-upgrade-platform-python-develcentos-upgrade-python-cffi-debugsourcecentos-upgrade-python-cryptography-debugsourcecentos-upgrade-python-lxml-debugsourcecentos-upgrade-python-markupsafe-debugsourcecentos-upgrade-python-psutil-debugsourcecentos-upgrade-python-psycopg2-debugsourcecentos-upgrade-python3centos-upgrade-python3-debugcentos-upgrade-python3-debuginfocentos-upgrade-python3-debugsourcecentos-upgrade-python3-develcentos-upgrade-python3-idlecentos-upgrade-python3-libscentos-upgrade-python3-testcentos-upgrade-python3-tkintercentos-upgrade-python38centos-upgrade-python38-asn1cryptocentos-upgrade-python38-babelcentos-upgrade-python38-cfficentos-upgrade-python38-cffi-debuginfocentos-upgrade-python38-chardetcentos-upgrade-python38-cryptographycentos-upgrade-python38-cryptography-debuginfocentos-upgrade-python38-cythoncentos-upgrade-python38-cython-debuginfocentos-upgrade-python38-debugcentos-upgrade-python38-debuginfocentos-upgrade-python38-debugsourcecentos-upgrade-python38-develcentos-upgrade-python38-idlecentos-upgrade-python38-idnacentos-upgrade-python38-jinja2centos-upgrade-python38-libscentos-upgrade-python38-lxmlcentos-upgrade-python38-lxml-debuginfocentos-upgrade-python38-markupsafecentos-upgrade-python38-markupsafe-debuginfocentos-upgrade-python38-mod_wsgicentos-upgrade-python38-numpycentos-upgrade-python38-numpy-debuginfocentos-upgrade-python38-numpy-doccentos-upgrade-python38-numpy-f2pycentos-upgrade-python38-pipcentos-upgrade-python38-pip-wheelcentos-upgrade-python38-plycentos-upgrade-python38-psutilcentos-upgrade-python38-psutil-debuginfocentos-upgrade-python38-psycopg2centos-upgrade-python38-psycopg2-debuginfocentos-upgrade-python38-psycopg2-doccentos-upgrade-python38-psycopg2-testscentos-upgrade-python38-pycparsercentos-upgrade-python38-pymysqlcentos-upgrade-python38-pysockscentos-upgrade-python38-pytzcentos-upgrade-python38-pyyamlcentos-upgrade-python38-pyyaml-debuginfocentos-upgrade-python38-requestscentos-upgrade-python38-rpm-macroscentos-upgrade-python38-scipycentos-upgrade-python38-scipy-debuginfocentos-upgrade-python38-setuptoolscentos-upgrade-python38-setuptools-wheelcentos-upgrade-python38-sixcentos-upgrade-python38-testcentos-upgrade-python38-tkintercentos-upgrade-python38-urllib3centos-upgrade-python38-wheelcentos-upgrade-python38-wheel-wheelcentos-upgrade-pyyaml-debugsourcecentos-upgrade-scipy-debugsource
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.