CVE-2025-13837

Updated: 2026-02-04 05:06:57.501916

Description:

When loading a plist file, the plistlib module reads data in size specified by the file itself, meaning a malicious file can cause OOM and DoS issues


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0.0
CVSS Version 3.x MEDIUM 5.5

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

EL 7 python 2.7 5.5 MEDIUM Needs Triage 2026-02-04 09:00:40
EL 7 python 3.6 5.5 MEDIUM Released CLSA-2026:1771342308 2026-02-17 15:49:02
EL 8 python 2.7 5.5 MEDIUM Needs Triage 2026-02-04 09:00:42
EL 8 python 3.6 5.5 MEDIUM Released CLSA-2026:1771339561 2026-02-17 15:48:35
EL 9 python 3.6 5.5 MEDIUM Released CLSA-2026:1771339135 2026-02-17 15:48:42
EL 9 python 2.7 5.5 MEDIUM Needs Triage 2026-02-04 09:00:55
Ubuntu 16.04 python 2.7 5.5 MEDIUM Needs Triage 2026-02-04 09:00:44
Ubuntu 16.04 python 3.6 5.5 MEDIUM Released CLSA-2026:1771343181 2026-02-17 15:48:49
Ubuntu 18.04 python 2.7 5.5 MEDIUM Needs Triage 2026-02-04 09:00:47
Ubuntu 18.04 python 3.6 5.5 MEDIUM Released CLSA-2026:1771343401 2026-02-17 18:18:03
Total: 36