5 matches found
EUVD-2022-0096
Malicious code in bioql PyPI...
elib (=0.1.7), epab (>=0.1.24 <=2018.4.2.3) +1 more potentially affected by CVE-2022-39280 via dparse (>=0.2.1 <=0.5.1)
dparse PYPI version =0.2.1, =0.1.24, =0.0.0, =3.1.3 Source cves: CVE-2022-39280 Source advisory: OSV:PYSEC-2022-301...
PYSEC-2022-301
dparse is a parser for Python dependency files. dparse in versions before 0.5.2 contain a regular expression that is vulnerable to a Regular Expression Denial of Service. All the users parsing index server URLs with dparse are impacted by this vulnerability. A patch has been applied in version...
CVE-2022-39280 Regular expression denial of service in dparse
dparse is a parser for Python dependency files. dparse in versions before 0.5.2 contain a regular expression that is vulnerable to a Regular Expression Denial of Service. All the users parsing index server URLs with dparse are impacted by this vulnerability. A patch has been applied in version...
elib (=0.1.7), epab (>=0.1.24 <=2018.4.2.3) +1 more potentially affected by CVE-2022-39280 via dparse (>=0.2.1 <=0.5.1)
dparse PYPI version =0.2.1, =0.1.24, =0.0.0, =3.1.3 Source cves: CVE-2022-39280 Source advisory: OSV:GHSA-8FG9-P83M-X5PQ...