Lucene search
MitreCVELIST:CVE-2022-40023HistorySep 07, 2022 - 12:00 a.m.
CVE-2022-40023
2022-09-0700:00:00
mitre
www.cve.org
Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. This also affects babelplugin and linguaplugin.
References
github.com/sqlalchemy/mako/blob/c2f392e0be52dc67d1b9770ab8cce6a9c736d547/mako/ext/extract.py#L21
github.com/sqlalchemy/mako/commit/925760291d6efec64fda6e9dd1fd9cfbd5be068c
github.com/sqlalchemy/mako/issues/366
lists.debian.org/debian-lts-announce/2022/09/msg00026.html
pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages/
pyup.io/vulnerabilities/CVE-2022-40023/50870/
Related
nessus
nessus
CentOS 8 : python-mako (CESA-2023:2893)
2023-05-16 00:00:00
RHEL 9 : python-mako (RHSA-2023:2258)
2023-05-09 00:00:00
Oracle Linux 9 : python-mako (ELSA-2023-2258)
2023-05-15 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-40023 affecting package python-mako for versions less than 1.2.2-1
2022-10-05 23:33:42
CVE-2022-40023 affecting package python-mako 1.0.7-4
2022-10-04 07:51:29
openvas
openvas
Ubuntu: Security Advisory (USN-5625-2)
2022-11-16 00:00:00
Mageia: Security Advisory (MGASA-2022-0350)
2022-10-03 00:00:00
Ubuntu: Security Advisory (USN-5625-1)
2022-09-22 00:00:00
ubuntu
ubuntu
Mako vulnerability
2022-11-15 00:00:00
Mako vulnerability
2022-09-21 00:00:00
osv
osv
Moderate: python-mako security update
2023-05-09 00:00:00
Moderate: python-mako security update
2023-05-16 00:00:00
CVE-2022-40023
2022-09-07 13:15:09
redos
redos
ROS-20230428-02
2023-04-28 00:00:00
oraclelinux
oraclelinux
python-mako security update
2023-05-24 00:00:00
python-mako security update
2023-05-15 00:00:00
redhat
redhat
(RHSA-2023:2258) Moderate: python-mako security update
2023-05-09 05:05:14
(RHSA-2023:2893) Moderate: python-mako security update
2023-05-16 05:57:29
amazon
amazon
Medium: python-mako
2023-07-20 17:29:00
debian
debian
[SECURITY] [DLA 3116-1] mako security update
2022-09-21 16:06:04
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2022-09-08 04:31:41
mageia
mageia
Updated python-mako packages fix security vulnerability
2022-10-01 20:48:24
nvd
nvd
CVE-2022-40023
2022-09-07 13:15:09
almalinux
almalinux
Moderate: python-mako security update
2023-05-16 00:00:00
Moderate: python-mako security update
2023-05-09 00:00:00
ubuntucve
ubuntucve
CVE-2022-40023
2022-09-07 00:00:00
github
github
mako is vulnerable to Regular Expression Denial of Service
2022-09-16 17:20:25
cve
cve
CVE-2022-40023
2022-09-07 13:15:09
alpinelinux
alpinelinux
CVE-2022-40023
2022-09-07 13:15:09
redhatcve
redhatcve
CVE-2022-40023
2022-09-22 07:49:05
prion
prion
Design/Logic Flaw
2022-09-07 13:15:00
debiancve
debiancve
CVE-2022-40023
2022-09-07 13:15:09
