Updated: 2025-08-20 00:11:33.644366
Description:
read_ints in plistlib.py in Python through 3.9.1 is vulnerable to a potential DoS attack via CPU and RAM exhaustion when processing malformed Apple Property List files in binary format.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | 0.0 | |
| CVSS Version 3.x | MEDIUM | 6.5 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| Ubuntu 16.04 ELS | python3.5 | 3.5.2 | 6.5 | MEDIUM | Released | CLSA-2023:1703611827 | 2023-12-26 13:09:11 | |
| Ubuntu 16.04 ELS | python2.7 | 2.7.12 | 6.5 | MEDIUM | Not Vulnerable | 2024-07-17 11:32:48 | ||
| Ubuntu 18.04 ELS | python2.7 | 2.7.17-1 | 6.5 | MEDIUM | Not Vulnerable | 2024-07-17 11:32:48 | ||
| Ubuntu 18.04 ELS | python3.6 | 3.6.9-1 | 6.5 | MEDIUM | Released | CLSA-2023:1701971140 | 2023-12-07 13:09:13 |