Regular Expression Denial Of Service (ReDoS)

wheel is vulnerable to regular expression denial of service. The vulnerability exists due to the insecure regex pattern used for the WHEELINFORE attribute in the init function of wheelfile.py, allowing an attacker to crash the application by passing a maliciously crafted Wheel file...

PT-2022-7152 · Python Packaging Authority +7 · Wheel +7

Name of the Vulnerable Software and Affected Versions: Python Packaging Authority PyPA Wheel versions 0.37.1 and earlier Description: The issue is related to an uncontrolled resource consumption in the Python Packaging Authority PyPA Wheel, which can be exploited by a remote attacker to cause a...