Lucene search
K

16 matches found

CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.215 views

CVE-2022-42969 affecting package python-py 1.10.0-3

CVE-2022-42969 affecting package python-py 1.10.0-3. This CVE either no longer is or was never applicable...

7.5CVSS6.4AI score0.01546EPSS
Exploits1
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.45 views

CVE-2022-42969 affecting package python-py 1.10.0-1

CVE-2022-42969 affecting package python-py 1.10.0-1. No patch is available currently...

7.5CVSS9.9AI score0.01546EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/25 6:59 p.m.24 views

Security Bulletin: Vulnerability in pytest-dev py affects IBM watsonx.data

Summary pytest-dev py is vulnerable to a denial of service, caused by a regular expression denial of service ReDoS flaw by the InfoSvnCommand argument. By sending a specially-crafted regex info data, a remote attacker could exploit this vulnerability to cause a denial of service condition. This c...

7.5CVSS7.8AI score0.01546EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/04/14 12:0 a.m.29 views

FreeBSD : py39-py -- Regular expression Denial of Service vulnerability (28a37df6-ba1a-4eed-bb64-623fc8e8dfd0)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 28a37df6-ba1a-4eed-bb64-623fc8e8dfd0 advisory. - The py library through 1.11.0 for Python allows remote attackers to conduct a ReDoS Regular expressio...

7.5CVSS6.6AI score0.01546EPSS
Exploits1References4
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/04 5:59 a.m.36 views

Security Bulletin: Vulnerability in py library affects IBM Cloud Pak for Data System 1.0(CPDS 1.0) [CVE-2022-42969]

Summary The py package is used by IBM Cloud Pak for Data System 1.0 . IBM Cloud Pak for Data System 1.0 has addressed the applicable CVE CVE-2022-42969. Vulnerability Details CVEID:CVE-2022-42969 DESCRIPTION: pytest-dev py is vulnerable to a denial of service, caused by a regular expression denia...

7.5CVSS6.1AI score0.01546EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2023:0681-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.01546EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/03/10 12:0 a.m.47 views

SUSE SLES12 Security Update : python-py (SUSE-SU-2023:0681-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0681-1 advisory. Bugfixes: - Fixed bugs introduced with the fix for CVE-2022-42969 bsc1204364, bsc1208181. Tenable has extracted the preceding description...

7.5CVSS6.7AI score0.01546EPSS
Exploits1References5
OSV
OSV
added 2023/03/08 4:28 p.m.12 views

SUSE-SU-2023:0681-1 Security update for python-py

This update for python-py fixes the following issues: Bugfixes: - Fixed bugs introduced with the fix for CVE-2022-42969 bsc1204364, bsc1208181...

7.5CVSS7.6AI score0.01546EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/02/15 12:0 a.m.24 views

SUSE SLES12 Security Update : python-py (SUSE-SU-2023:0395-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0395-1 advisory. - CVE-2022-42969: Fixed an excessive resource consumption that could be triggered when interacting with a Subversion repository containing...

7.5CVSS6.7AI score0.01546EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2023/02/14 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2023:0395-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.01546EPSS
Exploits1References4
OSV
OSV
added 2023/02/13 9:11 a.m.7 views

SUSE-SU-2023:0395-1 Security update for python-py

This update for python-py fixes the following issues: - CVE-2022-42969: Fixed an excessive resource consumption that could be triggered when interacting with a Subversion repository containing crated data bsc1204364. This also updates python3-py to version 1.8.1 for SUSE Linux Enterprise Server...

7.5CVSS7.4AI score0.01546EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/01/27 12:0 a.m.27 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-py (SUSE-SU-2023:0161-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:0161-1 advisory. - CVE-2022-42969: Fixed an excessive resource consumption that could be triggered when interacting with a...

7.5CVSS6.7AI score0.01546EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2023:0161-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01546EPSS
Exploits1References2
OSV
OSV
added 2023/01/26 5:23 p.m.6 views

SUSE-SU-2023:0161-1 Security update for python-py

This update for python-py fixes the following issues: - CVE-2022-42969: Fixed an excessive resource consumption that could be triggered when interacting with a Subversion repository containing crated data bsc1204364...

7.5CVSS7.5AI score0.01546EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2022/10/16 12:0 a.m.4 views

CVE-2022-42969

The py library through 1.11.0 for Python allows remote attackers to conduct a ReDoS Regular expression Denial of Service attack via a Subversion repository with crafted info data, because the InfoSvnCommand argument is mishandled. Note: This has been disputed by multiple third parties as not bein...

5.3CVSS7.5AI score0.01546EPSS
Exploits1References4
CVE
CVE
added 2022/10/16 12:0 a.m.354 views

CVE-2022-42969

CVE-2022-42969 affects the Python package py (through 1.11.0). The vulnerability allows a remote ReDoS via a crafted InfoSvnCommand argument in a Subversion repository, caused by mishandling of the info data, per connected IBM security bulletin. The description notes that this issue has been disp...

7.5CVSS7.3AI score0.01546EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder