CVE-2020-27619

Updated: 2024-11-24 05:47:28.486988

Description:

In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x HIGH 7.5
CVSS Version 3.x CRITICAL 9.8

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

CentOS 6 ELS python 2.6.6 9.8 CRITICAL Released CLSA-2021:1633442879 2022-05-05 12:01:59
CentOS 8.4 ELS python3 3.6.8 9.8 CRITICAL Not Vulnerable 2022-05-26 04:47:07
CentOS 8.4 ELS python2 2.7.18 9.8 CRITICAL Released CLSA-2022:1646085619 2022-03-10 04:00:02
CentOS 8.5 ELS python2 2.7.18 9.8 CRITICAL Not Vulnerable 2022-05-27 05:39:25
CentOS 8.5 ELS python3 3.6.8 9.8 CRITICAL Not Vulnerable 2022-03-10 03:59:59
CloudLinux 6 ELS python 2.6.6 9.8 CRITICAL Released 2021-12-09 07:57:07
Oracle Linux 6 ELS python 2.6.6 9.8 CRITICAL Released CLSA-2021:1634925483 2021-12-09 07:57:07
Ubuntu 16.04 ELS python3.5 3.5.2 9.8 CRITICAL Already Fixed 2024-07-16 10:48:13
Ubuntu 16.04 ELS python2.7 2.7.12 9.8 CRITICAL Released CLSA-2024:1721401321 2024-07-19 12:30:35
Ubuntu 18.04 ELS python2.7 2.7.17-1 9.8 CRITICAL Released CLSA-2024:1721401573 2024-07-19 11:59:20