3 matches found
CLSA-2023-1697464069 python: Fix of CVE-2022-48566
CVE-2022-48566: Make comparedigest more constant-time...
CLSA-2023-1697463705 Fix CVE(s): CVE-2022-48566
SECURITY UPDATE: Constant-time-defeating optimisations issue - debian/patches/CVE-2022-48566.patch: Make comparedigest more constant-time - CVE-2022-48566...
Medium: python38
Issue Overview: A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using inttext, a system could take 50ms to parse an int string with 100,000 digits and 5s for 1,000,000 digits float, decimal, int.frombytes, and int for binary bases 2, 4, 8, 16,...