Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.11 views

Amazon Linux 2023 : python3.14, python3.14-devel, python3.14-freethreading (ALAS2023-2026-1774)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1774 advisory. The tarfile module would still apply normalization of AREGTYPE \x00 blocks to DIRTYPE, even while processing a multi-block member such as GNUTYPELONGNAME or GNUTYPELONGLINK. This could result ...

7.5CVSS5.5AI score0.0079EPSS
Exploits1References12
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.9 views

CPython 安全漏洞

CPython is a Python interpreter implemented in C language by the Python Foundation. CPython has a security vulnerability that stems from the sockrecfrominto method in asyncio, where the nbytes parameter lacks a data buffer boundary check. This could lead to out-of-buffer writing when the amount o...

8.8CVSS5.9AI score0.00374EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2025/02/06 8:2 p.m.10 views

K000149683: Python asyncio vulnerability CVE-2024-12254

Security Advisory Description Starting in Python 3.12.0, the asyncio.SelectorSocketTransport.writelines method would not "pause" writing and signal to the Protocol to drain the buffer to the wire once the write buffer reached the "high-water mark". Because of this, Protocols would not periodicall...

8.7CVSS7.9AI score0.0188EPSS
Exploits0
Amazon
Amazon
added 2025/01/24 12:0 a.m.4 views

Important: python3.12

Issue Overview: Starting in Python 3.12.0, the asyncio.SelectorSocketTransport.writelines method would not "pause" writing and signal to the Protocol to drain the buffer to the wire once the write buffer reached the "high-water mark". Because of this, Protocols would not periodically drain the...

8.7CVSS7.9AI score0.0188EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/01/16 12:0 a.m.5 views

The vulnerability of the `asyncio._SelectorSocketTransport.writelines()` method in the Python programming language, which allows a hacker to cause a denial-of-service attack

The vulnerability of the asyncio.SelectorSocketTransport.writelines method in the Python programming language is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

7.8CVSS7.2AI score0.0188EPSS
Exploits0References7Affected Software3
Rows per page
Query Builder