vulnerability
Oracle Solaris 11: CVE-2020-14422 (11.4 SRU 27.82.1)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | Jun 18, 2020 | Jan 19, 2021 | Feb 17, 2022 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Jun 18, 2020
Added
Jan 19, 2021
Modified
Feb 17, 2022
Description
Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface classes, which might allow a remote attacker to cause a denial of service if an application is affected by the performance of a dictionary containing IPv4Interface or IPv6Interface objects, and this attacker can cause many dictionary entries to be created. This is fixed in: v3.5.10, v3.5.10rc1; v3.6.12; v3.7.9; v3.8.4, v3.8.4rc1, v3.8.5, v3.8.6, v3.8.6rc1; v3.9.0, v3.9.0b4, v3.9.0b5, v3.9.0rc1, v3.9.0rc2.
Solutions
oracle-solaris-11-4-upgrade-legacy-library-python-tkinter-35-3-5-9-11-4-27-0-1-82-0oracle-solaris-11-4-upgrade-legacy-runtime-python-35-3-5-9-11-4-27-0-1-82-0oracle-solaris-11-4-upgrade-library-python-ipaddress-1-0-23-11-4-27-0-1-82-0oracle-solaris-11-4-upgrade-library-python-ipaddress-27-1-0-23-11-4-27-0-1-82-0oracle-solaris-11-4-upgrade-library-python-tkinter-37-3-7-9-11-4-27-0-1-82-0oracle-solaris-11-4-upgrade-runtime-python-37-3-7-9-11-4-27-0-1-82-0
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.