Multiple security issues were discovered in Python, a high-level, interactive, object-oriented language:
CVE-2024-0397
A race condition in the ssl module was found when accessing CA certificates.
CVE-2024-4032
The ipaddress module contained incorrect information whether some ipv4 and ipv6 address ranges are designated as globally reachable or private.
CVE-2024-8088
Incorrect handling of path names in the zipfile module could result in an infinite loop when processing a zip archive (resulting in denial of service)
https://security-tracker.debian.org/tracker/DSA-5759-1
Continue reading...
CVE-2024-0397
A race condition in the ssl module was found when accessing CA certificates.
CVE-2024-4032
The ipaddress module contained incorrect information whether some ipv4 and ipv6 address ranges are designated as globally reachable or private.
CVE-2024-8088
Incorrect handling of path names in the zipfile module could result in an infinite loop when processing a zip archive (resulting in denial of service)
https://security-tracker.debian.org/tracker/DSA-5759-1
Continue reading...
