vulnerability
CentOS Linux: CVE-2021-33503: Moderate: python39:3.9 and python39-devel:3.9 security update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | Jun 29, 2021 | Nov 10, 2021 | May 25, 2023 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
Jun 29, 2021
Added
Nov 10, 2021
Modified
May 25, 2023
Description
An issue was discovered in urllib3 before 1.26.5. When provided with a URL containing many @ characters in the authority component, the authority regular expression exhibits catastrophic backtracking, causing a denial of service if a URL were passed as a parameter or redirected to via an HTTP redirect.
Solutions
centos-upgrade-cython-debugsourcecentos-upgrade-numpy-debugsourcecentos-upgrade-python-cffi-debugsourcecentos-upgrade-python-cryptography-debugsourcecentos-upgrade-python-lxml-debugsourcecentos-upgrade-python-markupsafe-debugsourcecentos-upgrade-python-psutil-debugsourcecentos-upgrade-python-psycopg2-debugsourcecentos-upgrade-python38centos-upgrade-python38-asn1cryptocentos-upgrade-python38-babelcentos-upgrade-python38-cfficentos-upgrade-python38-cffi-debuginfocentos-upgrade-python38-chardetcentos-upgrade-python38-cryptographycentos-upgrade-python38-cryptography-debuginfocentos-upgrade-python38-cythoncentos-upgrade-python38-cython-debuginfocentos-upgrade-python38-debugcentos-upgrade-python38-debuginfocentos-upgrade-python38-debugsourcecentos-upgrade-python38-develcentos-upgrade-python38-idlecentos-upgrade-python38-idnacentos-upgrade-python38-jinja2centos-upgrade-python38-libscentos-upgrade-python38-lxmlcentos-upgrade-python38-lxml-debuginfocentos-upgrade-python38-markupsafecentos-upgrade-python38-markupsafe-debuginfocentos-upgrade-python38-mod_wsgicentos-upgrade-python38-numpycentos-upgrade-python38-numpy-debuginfocentos-upgrade-python38-numpy-doccentos-upgrade-python38-numpy-f2pycentos-upgrade-python38-pipcentos-upgrade-python38-pip-wheelcentos-upgrade-python38-plycentos-upgrade-python38-psutilcentos-upgrade-python38-psutil-debuginfocentos-upgrade-python38-psycopg2centos-upgrade-python38-psycopg2-debuginfocentos-upgrade-python38-psycopg2-doccentos-upgrade-python38-psycopg2-testscentos-upgrade-python38-pycparsercentos-upgrade-python38-pymysqlcentos-upgrade-python38-pysockscentos-upgrade-python38-pytzcentos-upgrade-python38-pyyamlcentos-upgrade-python38-pyyaml-debuginfocentos-upgrade-python38-requestscentos-upgrade-python38-rpm-macroscentos-upgrade-python38-scipycentos-upgrade-python38-scipy-debuginfocentos-upgrade-python38-setuptoolscentos-upgrade-python38-setuptools-wheelcentos-upgrade-python38-sixcentos-upgrade-python38-testcentos-upgrade-python38-tkintercentos-upgrade-python38-urllib3centos-upgrade-python38-wheelcentos-upgrade-python38-wheel-wheelcentos-upgrade-python39centos-upgrade-python39-cfficentos-upgrade-python39-cffi-debuginfocentos-upgrade-python39-chardetcentos-upgrade-python39-cryptographycentos-upgrade-python39-cryptography-debuginfocentos-upgrade-python39-debuginfocentos-upgrade-python39-debugsourcecentos-upgrade-python39-develcentos-upgrade-python39-idlecentos-upgrade-python39-idnacentos-upgrade-python39-libscentos-upgrade-python39-lxmlcentos-upgrade-python39-lxml-debuginfocentos-upgrade-python39-mod_wsgicentos-upgrade-python39-numpycentos-upgrade-python39-numpy-debuginfocentos-upgrade-python39-numpy-doccentos-upgrade-python39-numpy-f2pycentos-upgrade-python39-pipcentos-upgrade-python39-pip-wheelcentos-upgrade-python39-plycentos-upgrade-python39-psutilcentos-upgrade-python39-psutil-debuginfocentos-upgrade-python39-psycopg2centos-upgrade-python39-psycopg2-debuginfocentos-upgrade-python39-psycopg2-doccentos-upgrade-python39-psycopg2-testscentos-upgrade-python39-pycparsercentos-upgrade-python39-pymysqlcentos-upgrade-python39-pysockscentos-upgrade-python39-pyyamlcentos-upgrade-python39-pyyaml-debuginfocentos-upgrade-python39-requestscentos-upgrade-python39-rpm-macroscentos-upgrade-python39-scipycentos-upgrade-python39-scipy-debuginfocentos-upgrade-python39-setuptoolscentos-upgrade-python39-setuptools-wheelcentos-upgrade-python39-sixcentos-upgrade-python39-testcentos-upgrade-python39-tkintercentos-upgrade-python39-tomlcentos-upgrade-python39-urllib3centos-upgrade-python39-wheelcentos-upgrade-python39-wheel-wheelcentos-upgrade-pyyaml-debugsourcecentos-upgrade-scipy-debugsource
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.