vulnerability
Rocky Linux: CVE-2023-24329: python39-3.9-and-python39-devel-3.9 (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:C/A:N) | Feb 17, 2023 | Apr 18, 2024 | Jan 28, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:C/A:N)
Published
Feb 17, 2023
Added
Apr 18, 2024
Modified
Jan 28, 2025
Description
An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters.
Solution(s)
rocky-upgrade-cython-debugsourcerocky-upgrade-numpy-debugsourcerocky-upgrade-platform-pythonrocky-upgrade-platform-python-debugrocky-upgrade-platform-python-develrocky-upgrade-python-cffi-debugsourcerocky-upgrade-python-coverage-debugsourcerocky-upgrade-python-cryptography-debugsourcerocky-upgrade-python-lxml-debugsourcerocky-upgrade-python-markupsafe-debugsourcerocky-upgrade-python-psutil-debugsourcerocky-upgrade-python-psycopg2-debuginforocky-upgrade-python-psycopg2-debugsourcerocky-upgrade-python-psycopg2-docrocky-upgrade-python-pymongo-debuginforocky-upgrade-python-pymongo-debugsourcerocky-upgrade-python2rocky-upgrade-python2-backportsrocky-upgrade-python2-bsonrocky-upgrade-python2-bson-debuginforocky-upgrade-python2-coveragerocky-upgrade-python2-coverage-debuginforocky-upgrade-python2-cythonrocky-upgrade-python2-cython-debuginforocky-upgrade-python2-debugrocky-upgrade-python2-debuginforocky-upgrade-python2-debugsourcerocky-upgrade-python2-develrocky-upgrade-python2-libsrocky-upgrade-python2-lxmlrocky-upgrade-python2-lxml-debuginforocky-upgrade-python2-markupsaferocky-upgrade-python2-numpyrocky-upgrade-python2-numpy-debuginforocky-upgrade-python2-numpy-f2pyrocky-upgrade-python2-psycopg2rocky-upgrade-python2-psycopg2-debugrocky-upgrade-python2-psycopg2-debug-debuginforocky-upgrade-python2-psycopg2-debuginforocky-upgrade-python2-psycopg2-testsrocky-upgrade-python2-pymongorocky-upgrade-python2-pymongo-debuginforocky-upgrade-python2-pymongo-gridfsrocky-upgrade-python2-pyyamlrocky-upgrade-python2-pyyaml-debuginforocky-upgrade-python2-scipyrocky-upgrade-python2-scipy-debuginforocky-upgrade-python2-sqlalchemyrocky-upgrade-python2-testrocky-upgrade-python2-tkinterrocky-upgrade-python2-toolsrocky-upgrade-python3rocky-upgrade-python3-debugrocky-upgrade-python3-debuginforocky-upgrade-python3-debugsourcerocky-upgrade-python3-develrocky-upgrade-python3-idlerocky-upgrade-python3-libsrocky-upgrade-python3-testrocky-upgrade-python3-tkinterrocky-upgrade-python3.11rocky-upgrade-python3.11-debugrocky-upgrade-python3.11-debuginforocky-upgrade-python3.11-debugsourcerocky-upgrade-python3.11-develrocky-upgrade-python3.11-idlerocky-upgrade-python3.11-libsrocky-upgrade-python3.11-testrocky-upgrade-python3.11-tkinterrocky-upgrade-python38rocky-upgrade-python38-cffirocky-upgrade-python38-cffi-debuginforocky-upgrade-python38-cryptographyrocky-upgrade-python38-cryptography-debuginforocky-upgrade-python38-cythonrocky-upgrade-python38-cython-debuginforocky-upgrade-python38-debugrocky-upgrade-python38-debuginforocky-upgrade-python38-debugsourcerocky-upgrade-python38-develrocky-upgrade-python38-idlerocky-upgrade-python38-libsrocky-upgrade-python38-lxmlrocky-upgrade-python38-lxml-debuginforocky-upgrade-python38-markupsaferocky-upgrade-python38-markupsafe-debuginforocky-upgrade-python38-mod_wsgirocky-upgrade-python38-numpyrocky-upgrade-python38-numpy-debuginforocky-upgrade-python38-numpy-f2pyrocky-upgrade-python38-psutilrocky-upgrade-python38-psutil-debuginforocky-upgrade-python38-psycopg2rocky-upgrade-python38-psycopg2-debuginforocky-upgrade-python38-psycopg2-docrocky-upgrade-python38-psycopg2-testsrocky-upgrade-python38-pyyamlrocky-upgrade-python38-pyyaml-debuginforocky-upgrade-python38-scipyrocky-upgrade-python38-scipy-debuginforocky-upgrade-python38-testrocky-upgrade-python38-tkinterrocky-upgrade-python39rocky-upgrade-python39-cffirocky-upgrade-python39-cffi-debuginforocky-upgrade-python39-cryptographyrocky-upgrade-python39-cryptography-debuginforocky-upgrade-python39-cythonrocky-upgrade-python39-cython-debuginforocky-upgrade-python39-debugrocky-upgrade-python39-debuginforocky-upgrade-python39-debugsourcerocky-upgrade-python39-develrocky-upgrade-python39-idlerocky-upgrade-python39-libsrocky-upgrade-python39-lxmlrocky-upgrade-python39-lxml-debuginforocky-upgrade-python39-mod_wsgirocky-upgrade-python39-numpyrocky-upgrade-python39-numpy-debuginforocky-upgrade-python39-numpy-f2pyrocky-upgrade-python39-psutilrocky-upgrade-python39-psutil-debuginforocky-upgrade-python39-psycopg2rocky-upgrade-python39-psycopg2-debuginforocky-upgrade-python39-psycopg2-docrocky-upgrade-python39-psycopg2-testsrocky-upgrade-python39-pybind11rocky-upgrade-python39-pybind11-develrocky-upgrade-python39-pyyamlrocky-upgrade-python39-pyyaml-debuginforocky-upgrade-python39-scipyrocky-upgrade-python39-scipy-debuginforocky-upgrade-python39-testrocky-upgrade-python39-tkinterrocky-upgrade-pyyaml-debugsourcerocky-upgrade-scipy-debugsource
References
- CVE-2023-24329
- https://attackerkb.com/topics/CVE-2023-24329
- URL-https://errata.rockylinux.org/RLSA-2023:3585
- URL-https://errata.rockylinux.org/RLSA-2023:3591
- URL-https://errata.rockylinux.org/RLSA-2023:3594
- URL-https://errata.rockylinux.org/RLSA-2023:3595
- URL-https://errata.rockylinux.org/RLSA-2023:3780
- URL-https://errata.rockylinux.org/RLSA-2023:3781
- URL-https://errata.rockylinux.org/RLSA-2023:3811
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.