GoogleOSV:USN-5930-1

HistoryMar 07, 2023 - 12:12 p.m.

python3.7 vulnerability

2023-03-0712:12:34

Google

osv.dev

9.6 High

AI Score

Confidence

High

0.016 Low

EPSS

Percentile

87.5%

JSON

It was discovered that Python incorrectly handled certain inputs. If a
user or an automated system were tricked into running a specially
crafted input, a remote attacker could possibly use this issue to execute
arbitrary code. (CVE-2022-37454)

References

ubuntu.com/security/CVE-2022-37454

ubuntu.com/security/notices/USN-5930-1

nessus

Fedora 36 : pypy3.7 (2023-930077c742)

2023-03-18 00:00:00

Fedora 36 : python3.7 (2022-385d2ea041)

2022-12-21 00:00:00

Amazon Linux AMI : python36 (ALAS-2022-1652)

2022-12-10 00:00:00

openvas

Debian: Security Advisory (DSA-5269-1)

2022-11-03 00:00:00

Fedora: Security Advisory for python3.8 (FEDORA-2022-cb47d98a05)

2022-11-23 00:00:00

Ubuntu: Security Advisory (USN-6524-1)

2023-11-30 00:00:00

amazon

Important: python36

2022-12-01 17:34:00

Important: python3

2022-12-01 20:31:00

Important: python38

2022-12-01 17:34:00

fedora

[SECURITY] Fedora 36 Update: python3.7-3.7.15-2.fc36

2022-11-24 01:32:46

[SECURITY] Fedora 35 Update: python3.6-3.6.15-14.fc35

2022-11-21 00:51:18

[SECURITY] Fedora 36 Update: python3.6-3.6.15-14.fc36

2022-11-21 01:13:59

debian

[SECURITY] [DSA 5267-1] pysha3 security update

2022-10-30 19:09:10

[SECURITY] [DSA 5269-1] pypy3 security update

2022-11-02 18:54:47

[SECURITY] [DSA 5277-1] php7.4 security update

2022-11-13 18:52:43

cve

CVE-2022-37454

2022-10-21 06:15:00

osv

Buffer overflow in the _sha3 module in Python 3.10 and older

2022-10-21 00:00:00

python3.6 vulnerability

2023-03-06 12:53:35

BIT-python-2022-37454

2024-03-06 11:05:17

debiancve

CVE-2022-37454

2022-10-21 06:15:00

github

Buffer overflow in sponge queue functions

2023-04-26 17:39:58

altlinux

Security fix for the ALT Linux 10 package python3 version 3.9.16-alt1

2023-03-27 00:00:00

Security fix for the ALT Linux 10 package php8.2 version 8.1.12-alt1

2022-10-31 00:00:00

Security fix for the ALT Linux 10 package php8.0 version 8.0.25-alt1

2022-11-02 00:00:00

cvelist

CVE-2022-37454

2022-10-21 00:00:00

cloudfoundry

USN-5767-3: Python vulnerability | Cloud Foundry

2023-03-23 00:00:00

USN-5767-1: Python vulnerabilities | Cloud Foundry

2023-01-26 00:00:00

ubuntu

Python vulnerability

2023-03-06 00:00:00

veracode

Denial Of Service (DoS)

2022-10-28 10:11:51

cbl_mariner

CVE-2022-37454 affecting package python3 3.7.13-4

2022-12-27 17:55:44

CVE-2022-37454 affecting package python3 for versions less than 3.9.14-5

2022-12-19 20:12:40

CVE-2022-37454 affecting package php for versions less than 8.1.12-1

2022-12-09 00:19:55

prion

Integer overflow

2022-10-21 06:15:00

alpinelinux

CVE-2022-37454

2022-10-21 06:15:00

redhatcve

CVE-2022-37454

2022-11-04 19:26:10

ubuntucve

CVE-2022-37454

2022-10-21 00:00:00

slackware

[slackware-security] php

2022-11-10 19:52:56

[slackware-security] php80/php81

2022-10-31 23:47:05

[slackware-security] python3

2022-12-07 18:52:09

photon

Critical Photon OS Security Update - PHSA-2023-3.0-0556

2023-03-23 00:00:00

gentoo

PHP: Multiple Vulnerabilities

2022-11-19 00:00:00

Python, PyPy3: Multiple Vulnerabilities

2023-05-03 00:00:00

almalinux

Moderate: php:8.0 security update

2023-02-21 00:00:00

Moderate: php:8.1 security update

2023-05-09 00:00:00

Moderate: php:7.4 security update

2023-05-16 00:00:00

rocky

php security update

2023-04-06 15:53:36

php:8.0 security update

2023-02-22 01:08:53

redhat

(RHSA-2023:2417) Moderate: php:8.1 security update

2023-05-09 05:10:10

(RHSA-2023:0965) Moderate: php security update

2023-02-28 07:53:30

(RHSA-2023:2903) Moderate: php:7.4 security update

2023-05-16 05:57:44

oraclelinux

php security update

2023-02-28 00:00:00

8.1 security update

2023-05-15 00:00:00

php:7.4 security update

2023-05-24 00:00:00

python3.7 vulnerability

References

Related