VYPR

rpm package

suse/python-doc&distro=SUSE Linux Enterprise Server 11 SP3-LTSS

pkg:rpm/suse/python-doc&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS

Vulnerabilities (3)

  • CVE-2018-1061MedJun 19, 2018
    affected < 2.6-8.40.15.1fixed 2.6-8.40.15.1

    python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.

  • CVE-2018-1060HigJun 18, 2018
    affected < 2.6-8.40.15.1fixed 2.6-8.40.15.1

    python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in pop3lib's apop() method. An attacker could use this flaw to cause denial of service.

  • CVE-2016-5636CriSep 2, 2016
    affected < 2.6-8.40.15.1fixed 2.6-8.40.15.1

    Integer overflow in the get_data function in zipimport.c in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 allows remote attackers to have unspecified impact via a negative data size value, which triggers a heap-based buffer overflow.