Lucene search
+L

32 matches found

osv
osv
added 2 days ago2 views

DEBIAN-CVE-2026-59885

pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.4, the BER, CER, and DER decoders process OBJECT IDENTIFIER and RELATIVE-OID values in quadratic time relative to the number of arcs, so a small crafted payload containing an OID with many arcs consumes excessive CPU per decode call and c...

7.5CVSS6.1AI score0.00339EPSS
Exploits0References1
nvd
nvd
added 2 days ago7 views

CVE-2026-59885

pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.4, the BER, CER, and DER decoders process OBJECT IDENTIFIER and RELATIVE-OID values in quadratic time relative to the number of arcs, so a small crafted payload containing an OID with many arcs consumes excessive CPU per decode call and c...

7.5CVSS0.00339EPSS
Exploits0References3
cve
cve
added 2 days ago9 views

CVE-2026-59885

pyasn1 is a Python ASN.1 library. Before 0.6.4, the BER, CER, and DER decoders (and encoders on re-encode) exhibit quadratic-time processing for OBJECT IDENTIFIER and RELATIVE-OID values, allowing denial of service via crafted OIDs with many arcs. This vulnerability affects decoding/re-encoding o...

7.5CVSS6.1AI score0.00339EPSS
Exploits0References3
redhat
redhat
added 2026/05/20 1:36 p.m.13 views

pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service DoS f...

7.5CVSS6.6AI score0.00679EPSS
Exploits0References7
redhat
redhat
added 2026/05/04 2:31 p.m.8 views

pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service DoS f...

7.5CVSS6.6AI score0.00679EPSS
Exploits0References7
ibm
ibm
added 2026/05/04 12:28 p.m.13 views

Security Bulletin: pyasn1 Memory Exhaustion via Malformed RELATIVE-OID Leads to Denial of Service

Summary pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.2, a Denial-of-Service issue has been found that leads to memory exhaustion from malformed RELATIVE-OID with excessive continuation octets. This vulnerability is fixed in 0.6.2. Vulnerability Details CVEID:CVE-2026-23490...

7.5CVSS6.5AI score0.00679EPSS
Exploits0Affected Software1
rocky
rocky
added 2026/03/11 12:1 p.m.7 views

python-pyasn1 security update

An update is available for python-pyasn1. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming...

7.5CVSS5.8AI score0.00679EPSS
Exploits0
redhat
redhat
added 2026/03/10 1:54 a.m.6 views

pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service DoS f...

7.5CVSS5.7AI score0.00679EPSS
Exploits0References7
redhat
redhat
added 2026/03/10 1:1 a.m.4 views

pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service DoS f...

7.5CVSS5.7AI score0.00679EPSS
Exploits0References7
redhat
redhat
added 2026/03/10 12:34 a.m.5 views

pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service DoS f...

7.5CVSS5.7AI score0.00679EPSS
Exploits0References7
redhat
redhat
added 2026/03/10 12:30 a.m.7 views

pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service DoS f...

7.5CVSS5.7AI score0.00679EPSS
Exploits0References7
redhat
redhat
added 2026/03/10 12:20 a.m.10 views

Important: Red Hat Security Advisory: python-pyasn1 security update

An update for python-pyasn1 is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

7.5CVSS7.3AI score0.00679EPSS
Exploits0References2
redhat
redhat
added 2026/03/10 12:18 a.m.6 views

pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service DoS f...

7.5CVSS5.7AI score0.00679EPSS
Exploits0References7
nessus
nessus
added 2026/03/10 12:0 a.m.6 views

RHEL 10 : python-pyasn1 (RHSA-2026:4138)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:4138 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic da...

7.5CVSS5.9AI score0.00679EPSS
Exploits0References4
nessus
nessus
added 2026/03/03 12:0 a.m.5 views

RockyLinux 10 : python-pyasn1 (RLSA-2026:3354)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:3354 advisory. pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID CVE-2026-23490 Tenable has extracted the preceding description block...

7.5CVSS6AI score0.00679EPSS
Exploits0References3
redhat
redhat
added 2026/02/25 2:42 p.m.10 views

pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service DoS f...

7.5CVSS5.7AI score0.00679EPSS
Exploits0References7
osv
osv
added 2026/02/25 12:0 a.m.3 views

ALSA-2026:3354 Important: python-pyasn1 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.5CVSS6AI score0.00679EPSS
Exploits0References4
osv
osv
added 2026/02/16 2:23 p.m.3 views

SUSE-SU-2026:20447-1 Security update for python-pyasn1

This update for python-pyasn1 fixes the following issues: - CVE-2026-23490: Fixed malformed RELATIVE-OID with excessive continuation octets leading to Denial of Service bsc1256902...

7.5CVSS5.8AI score0.00679EPSS
Exploits0References3
osv
osv
added 2026/02/11 8:43 a.m.3 views

SUSE-SU-2026:0430-1 Security update for python-pyasn1

This update for python-pyasn1 fixes the following issues: - CVE-2026-23490: Fixed malformed RELATIVE-OID with excessive continuation octets leading to Denial of Service bsc1256902...

7.5CVSS5.8AI score0.00679EPSS
Exploits0References3
nessus
nessus
added 2026/02/10 12:0 a.m.4 views

RHEL 8 : resource-agents (RHSA-2026:2460)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:2460 advisory. The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several service...

7.5CVSS5.8AI score0.00679EPSS
Exploits0References4
Rows per page
Query Builder