vulnerability
FreeBSD: VID-951B513A-9F42-436D-888D-2162615D0FE4 (CVE-2022-42964): py-pymatgen -- regular expression denial of service
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Nov 9, 2022 | Apr 14, 2023 | Jan 28, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Nov 9, 2022
Added
Apr 14, 2023
Modified
Jan 28, 2025
Description
An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the pymatgen PyPI package, when an attacker is able to supply arbitrary input to the GaussianInput.from_string method
Solution(s)
freebsd-upgrade-package-py310-pymatgenfreebsd-upgrade-package-py311-pymatgenfreebsd-upgrade-package-py37-pymatgenfreebsd-upgrade-package-py38-pymatgenfreebsd-upgrade-package-py39-pymatgen
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.