Lucene search

CVE-2024-3219 Pure-Python fallback of socket.socketpair() doesn’t authenticate peer connection

🗓️ 29 Jul 2024 21:05:54Reported by PSFType

CVE-2024-3219 Pure-Python socket.socketpair() vulnerabilit

Reporter	Title	Published	Views	Family All 16
CVE	CVE-2024-3219	29 Jul 202422:15	–	cve
OSV	CVE-2024-3219	29 Jul 202422:15	–	osv
OSV	PSF-2024-7	29 Jul 202421:54	–	osv
OpenVAS	Python Connection Race Vulnerability (Jul 2024) - Windows	12 Aug 202400:00	–	openvas
OpenVAS	Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2024-2971)	12 Dec 202400:00	–	openvas
OpenVAS	Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2024-2942)	12 Dec 202400:00	–	openvas
OpenVAS	Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2024-2957)	12 Dec 202400:00	–	openvas
OpenVAS	Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2024-2985)	12 Dec 202400:00	–	openvas
Debian CVE	CVE-2024-3219	29 Jul 202422:15	–	debiancve
NVD	CVE-2024-3219	29 Jul 202422:15	–	nvd

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Windows"
    ],
    "product": "CPython",
    "repo": "https://github.com/python/cpython",
    "vendor": "Python Software Foundation",
    "versions": [
      {
        "lessThan": "3.8.20",
        "status": "affected",
        "version": "0",
        "versionType": "python"
      },
      {
        "lessThan": "3.9.20",
        "status": "affected",
        "version": "3.9.0",
        "versionType": "python"
      },
      {
        "lessThan": "3.10.15",
        "status": "affected",
        "version": "3.10.0",
        "versionType": "python"
      },
      {
        "lessThan": "3.11.10",
        "status": "affected",
        "version": "3.11.0",
        "versionType": "python"
      },
      {
        "lessThan": "3.12.5",
        "status": "affected",
        "version": "3.12.0",
        "versionType": "python"
      },
      {
        "lessThan": "3.13.0rc1",
        "status": "affected",
        "version": "3.13.0a1",
        "versionType": "python"
      }
    ]
  }
]

Source	Link
mail	www.mail.python.org/archives/list/[email protected]/thread/WYKDQWIERRE2ICIYMSVRZJO33GSCWU2B/
github	www.github.com/python/cpython/pull/122134
github	www.github.com/python/cpython/commit/c21a36112a0028d7ac3cf8f480e0dc88dba5922c
github	www.github.com/python/cpython/commit/06fa244666ec6335a3b9bf2367e31b42b9a89b20
github	www.github.com/python/cpython/commit/f071f01b7b7e19d7d6b3a4b0ec62f820ecb14660
github	www.github.com/python/cpython/commit/5f90abaa786f994db3907fc31e2ee00ea2cf0929
openwall	www.openwall.com/lists/oss-security/2024/07/29/3
github	www.github.com/python/cpython/commit/0b65c8bf5367625673eafb92f85046a1b31259f2
github	www.github.com/python/cpython/commit/2621a8a40ba4b2c68ca564671b7daa5da80a4508
github	www.github.com/python/cpython/commit/31302f5fc24eecd693f0c8aaba7c2840b09b594d

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

29 Jul 2024 21:54Current

CVSS45.1

EPSS0.00047