3 matches found
BELL-CVE-2022-21716 CVE-2022-21716 does not affect BellSoft software
Bulletin has no description...
adyanutils (>=0.4.0 <=0.8.6), ayugespidertools (>=3.4.1 <=3.9.5) +52 more potentially affected by CVE-2022-21716 via twisted (>=21.7.0 <=22.1.0)
twisted PYPI version =21.7.0, =0.4.0, =3.4.1, =1.6.0, =0.2.0, =3.9.2, =21.0.0, =1.1.2.post3, =0.1.0, =0.4.0, =0.7.2, =1.0.0, =1.0.0, =0.8.0, =0.9.0 and more Source cves: CVE-2022-21716 Source advisory: OSV:PYSEC-2022-160...
UBUNTU-CVE-2022-21716
Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to 22.2.0, Twisted SSH client and server implement is able to accept an infinite amount of data for the peer's SSH version identifier. This ends up with a buffer using all the available memory. The attach...