Vulnerability Bulletins

K78284681 : Python tarfile library vulnerability CVE-2019-20907


System information

   
Affected software F-Secure

Description

Security Advisory Description In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because _proc_pax lacks ...

More info:

https://my.f5.com/manage/s/article/K78284681?utm_source=f5support&utm_medium=RSS

Standar resources

Property Value
CVE

Version history

Version Comments Date
1.0 Advisory issued 2023-04-07
Ministerio de Defensa
CNI
CCN
CCN-CERT