Moderate severityNVD Advisory· Published Oct 19, 2010· Updated Jun 16, 2026
CVE-2010-3495
CVE-2010-3495
Description
Race condition in ZEO/StorageServer.py in Zope Object Database (ZODB) before 3.10.0 allows remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None, an unexpected value of None for the address, or an ECONNABORTED, EAGAIN, or EWOULDBLOCK error, a related issue to CVE-2010-3492.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
zodb3PyPI | < 3.10.0a2 | 3.10.0a2 |
Affected products
29cpe:2.3:a:zope:zodb:*:*:*:*:*:*:*:*+ 27 more
- cpe:2.3:a:zope:zodb:*:*:*:*:*:*:*:*range: <=3.9.7
- cpe:2.3:a:zope:zodb:2.10.9:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:2.11.4:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:2.8.11:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:2.9.11:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.3:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.4:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.5:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.6:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.7:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.8:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.8.6:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.9.0b1:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.9.0b2:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.9.0b3:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.9.0b4:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.9.0b5:*:*:*:*:*:*:*
- cpe:2.3:a:zope:zodb:3.9.0c1:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
15- bugs.python.org/issue6706nvdPatchWEB
- secunia.com/advisories/41755nvdVendor AdvisoryWEB
- github.com/advisories/GHSA-j6m4-frxh-p4x8ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2010-3495ghsaADVISORY
- lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.htmlnvdWEB
- pypi.python.org/pypi/ZODB3/3.10.0nvdWEB
- www.openwall.com/lists/oss-security/2010/09/09/6nvdWEB
- www.openwall.com/lists/oss-security/2010/09/11/2nvdWEB
- www.openwall.com/lists/oss-security/2010/09/22/3nvdWEB
- www.openwall.com/lists/oss-security/2010/09/24/3nvdWEB
- bugs.launchpad.net/zodb/+bug/135108nvdWEB
- github.com/pypa/advisory-database/tree/main/vulns/zodb3/PYSEC-2010-27.yamlghsaWEB
- github.com/zopefoundation/ZODB/commit/cfe16277ef1b5bb094dc79da50b0df1ee1537590ghsaWEB
- pypi.org/project/ZODB3/3.10.0a2/ghsaWEB
- web.archive.org/web/20111225005929/http://secunia.com/advisories/41755ghsaWEB
News mentions
0No linked articles in our index yet.