Astra Linux - уязвимость в python2.7, python3.7, pypy

A XXE issue was discovered in Python through version 3.9.1. The plistlib module no longer accepts entity declarations in XML plist files to prevent XML vulnerabilities...

ROS-20260505-73-0037

A vulnerability in the plistlib module of the Python programming language interpreter is associated with uncontrolled resource consumption. Exploitation of the vulnerability allows an attacker to cause a denial of service...

AZL-71267 CVE-2025-13837 affecting package python3 for versions less than 3.12.9-7

When loading a plist file, the plistlib module reads data in size specified by the file itself, meaning a malicious file can cause OOM and DoS issues...

Linux Distros Unpatched Vulnerability : CVE-2022-48564

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - readints in plistlib.py in Python through 3.9.1 is vulnerable to a potential DoS attack via CPU and RAM exhaustion when processing malformed Apple Property List...

python: DoS when processing malformed Apple Property List files in binary format

A vulnerability was found in the Python core plistlib library within the readints function in the plistlib.py file. In malformed input, the implementation can be manipulated to create an argument for struct.unpack. This issue can lead to excessive CPU and memory consumption, resulting in a...

SUSE CVE-2022-48565

An XML External Entity XXE issue was discovered in Python through 3.9.1. The plistlib module no longer accepts entity declarations in XML plist files to avoid XML vulnerabilities...

CVE-2022-48564

readints in plistlib.py in Python through 3.9.1 is vulnerable to a potential DoS attack via CPU and RAM exhaustion when processing malformed Apple Property List files in binary format...