Debian dla-4000 : python-sqlparse-doc - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4000 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4000-1 [email protected]...

Moderate: Red Hat Security Advisory: Satellite 6.11 Release

An update is now available for Red Hat Satellite 6.11 Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Security Fixes: libsolv: Heap-based buff...

openSUSE 15 Security Update : python-sqlparse (openSUSE-SU-2021:3857-1)

The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2021:3857-1 advisory. - sqlparse is a non-validating SQL parser module for Python. In sqlparse versions 0.4.0 and 0.4.1 there is a regular Expression Denial of Service in...

openSUSE: Security Advisory for python-sqlparse (openSUSE-SU-2021:3857-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE: Security Advisory (SUSE-SU-2021:3857-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 Security Update : python-sqlparse (SUSE-SU-2021:3857-1)

The remote SUSE Linux SLED15 / SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2021:3857-1 advisory. - CVE-2021-32839: Fixed ReDoS via regular expression in StripComments filter bsc1190741. Tenable has extracted the preceding description block...

OPENSUSE-SU-2021:3857-1 Security update for python-sqlparse

This update for python-sqlparse fixes the following issues: - CVE-2021-32839: Fixed ReDoS via regular expression in StripComments filter bsc1190741...

Security update for python-sqlparse (moderate)

openSUSE Security Update: Security update for python-sqlparse Announcement ID: openSUSE-SU-2021:3857-1 Rating: moderate References: 1190741 Cross-References: CVE-2021-32839 CVSS scores: CVE-2021-32839 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-32839 SUSE: 6.5...

Ubuntu 21.04 : SQL parse vulnerability (USN-5085-1)

The remote Ubuntu 21.04 host has packages installed that are affected by a vulnerability as referenced in the USN-5085-1 advisory. It was discovered that SQL parse incorrectly handled certain regular expression. An attacker could possibly use this issue to cause a denial of service. Tenable has...

CVE-2021-32839

creationtimestamp| type| source ---|---|--- 2021-09-20 20:26:58+00:00| seen| https://t.me/cibsecurity/29115...

CVE-2021-32839

sqlparse is a non-validating SQL parser module for Python. In sqlparse versions 0.4.0 and 0.4.1 there is a regular Expression Denial of Service in sqlparse vulnerability. The regular expression may cause exponential backtracking on strings containing many repetitions of '\r\n' in SQL comments. On...

CVE-2021-32839 Regular Expression Denial of Service in sqlparse

sqlparse is a non-validating SQL parser module for Python. In sqlparse versions 0.4.0 and 0.4.1 there is a regular Expression Denial of Service in sqlparse vulnerability. The regular expression may cause exponential backtracking on strings containing many repetitions of '\r\n' in SQL comments. On...

CVE-2021-32839

CVE-2021-32839 affects the Python package sqlparse . The vulnerability is a ReDoS in the StripComments regex used by the formatting path for removing comments, causing exponential backtracking on strings containing many repetitions of '\r\n' in SQL comments in versions 0.4.0 and 0.4.1. The issue ...

citrinedjangomodule (=1.0.0), cligo (>=1.0.0 <=1.2.1) +24 more potentially affected by CVE-2021-32839 via sqlparse (>=0.4.0 <=0.4.1)

sqlparse PYPI version =0.4.0, =1.0.0, =4.15.0, =1.0.9, =0.0.1, =0.2.0, =0.0.1, =0.14.2, =0.0.6, =0.0.10, =0.0.204 and more Source cves: CVE-2021-32839 Source advisory: OSV:GHSA-P5W8-WQHJ-9HHF...