Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2024/07/23 12:0 a.m.15 views

Photon OS 2.0: Python3 PHSA-2018-2.0-0037

An update of the python3 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0037. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.2CVSS7.6AI score0.01348EPSS
Exploits1References3
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.27 views

CVE-2017-18207 affecting package python2 for versions less than 2.7.18-8

CVE-2017-18207 affecting package python2 for versions less than 2.7.18-8. A patched version of the package is available...

6.5CVSS7.2AI score0.01348EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2018-0270)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.05103EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2020:0114-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.73327EPSS
Exploits31References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2020:0302-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.20807EPSS
Exploits6References24
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2018:0934-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS8.6AI score0.01348EPSS
Exploits0References4
CBLMariner
CBLMariner
added 2020/11/30 7:30 p.m.38 views

CVE-2017-18207 affecting package python2 2.7.18-14

CVE-2017-18207 affecting package python2 2.7.18-14. A patched version of the package is available...

6.5CVSS7.5AI score0.01348EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/04/16 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for python (EulerOS-SA-2020-1427)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.20807EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2020/04/02 12:0 a.m.49 views

EulerOS Virtualization for ARM 64 3.0.6.0 : python2 (EulerOS-SA-2020-1344)

According to the versions of the python2 packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A ZIP bomb attack was found in the Python zipfile module. A remote attacker could abuse this flaw by providing a...

7.5CVSS6.8AI score0.06617EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2020/04/01 12:0 a.m.38 views

Huawei EulerOS: Security Advisory for python2 (EulerOS-SA-2020-1344)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.06617EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/03/23 12:0 a.m.50 views

Huawei EulerOS: Security Advisory for python2 (EulerOS-SA-2020-1295)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.6AI score0.06617EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/02/04 12:0 a.m.37 views

SUSE SLES12 Security Update : python36 (SUSE-SU-2020:0302-1)

This update for python36 to version 3.6.10 fixes the following issues : CVE-2017-18207: Fixed a denial of service in Waveread.readfmtchunk bsc1083507. CVE-2019-16056: Fixed an issue where email parsing could fail for multiple @ signs bsc1149955. CVE-2019-15903: Fixed a heap-based buffer over-read...

9.8CVSS7.4AI score0.20807EPSS
Exploits6References42
OSV
OSV
added 2020/02/03 1:35 p.m.9 views

SUSE-SU-2020:0302-1 Security update for python36

This update for python36 to version 3.6.10 fixes the following issues: - CVE-2017-18207: Fixed a denial of service in Waveread.readfmtchunk bsc1083507. - CVE-2019-16056: Fixed an issue where email parsing could fail for multiple @ signs bsc1149955. - CVE-2019-15903: Fixed a heap-based buffer...

9.8CVSS7.8AI score0.20807EPSS
Exploits6References32
OpenVAS
OpenVAS
added 2020/01/27 12:0 a.m.43 views

openSUSE: Security Advisory for python3 (openSUSE-SU-2020:0086_1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS8.6AI score0.73327EPSS
Exploits31References2
Tenable Nessus
Tenable Nessus
added 2020/01/22 12:0 a.m.57 views

openSUSE Security Update : python3 (openSUSE-2020-86) (BEAST) (httpoxy)

This update for python3 to version 3.6.10 fixes the following issues : - CVE-2017-18207: Fixed a denial of service in Waveread.readfmtchunk bsc1083507. - CVE-2019-16056: Fixed an issue where email parsing could fail for multiple @ bsc1149955. - CVE-2019-15903: Fixed a heap-based buffer over-read ...

10CVSS7.4AI score0.73327EPSS
Exploits31References82
OPENSUSE Linux
OPENSUSE Linux
added 2020/01/21 12:0 a.m.320 views

Security update for python3 (important)

openSUSE Security Update: Security update for python3 Announcement ID: openSUSE-SU-2020:0086-1 Rating: important References: 1027282 1029377 1029902 1040164 1042670 1070853 1079761 1081750 1083507 1086001 1088004 1088009 1088573 1094814 1107030 1109663 1109847 1120644 1122191 1129346 1130840...

10CVSS8.5AI score0.73327EPSS
Exploits31References56
IBM Security Bulletins
IBM Security Bulletins
added 2018/10/11 3:45 p.m.32 views

Security Bulletin: Vulnerabilities in Python affect IBM BladeCenter Advanced Management Module (AMM)

Summary IBM BladeCenter Advanced Management Module AMM has addressed the following vulnerabilities in Python. Vulnerability Details CVEID: CVE-2017-18207 DESCRIPTION: Python is vulnerable to a denial of service, caused by a divide-by-zero in the Waveread.readfmtchunk function in Lib/wave.py. By...

9.8CVSS2AI score0.07944EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/07/24 12:0 a.m.51 views

SUSE SLED12 / SLES12 Security Update : python (SUSE-SU-2018:2040-1)

This update for python fixes the following issues: The following security vulnerabilities were addressed : - Add a check to Lib/wave.py that verifies that at least one channel is provided. Prior to this, attackers could cause a denial of service via a crafted wav format audio file. bsc1083507,...

6.5CVSS6.8AI score0.01348EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/04/17 12:0 a.m.28 views

openSUSE Security Update : python3 (openSUSE-2018-372)

This update for python3 fixes the following issues : Security issue fixed : - CVE-2017-18207: Fixed possible denial of service vulnerability by adding a check to Lib/wave.py that verifies that at least one channel is provided bsc1083507. This update was imported from the SUSE:SLE-12:Update update...

6.5CVSS6.8AI score0.01348EPSS
Exploits0References2
CVE
CVE
added 2018/03/01 5:0 a.m.356 views

CVE-2017-18207

CVE-2017-18207 affects Python’s CPython before or up to 3.6.4, where the Wave_read._read_fmt_chunk implementation may not ensure a nonzero channel value, enabling a denial of service through a crafted WAV file (divide-by-zero/exception). The root cause is in Lib/wave.py; exploitation details are ...

6.5CVSS7.1AI score0.01348EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder