FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-12-24 11:27:39 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
28a37df6-ba1a-4eed-bb64-623fc8e8dfd0	py39-py -- Regular expression Denial of Service vulnerability SCH227 reports: The py library through 1.11.0 for Python allows remote attackers to conduct a ReDoS (Regular expression Denial of Service) attack via a Subversion repository with crafted info data, because the InfoSvnCommand argument is mishandled. Discovery 2022-11-04 Entry 2023-04-09 py39-py <= 1.11.0 CVE-2022-42969 https://osv.dev/vulnerability/PYSEC-2022-42969 https://osv.dev/vulnerability/GHSA-w596-4wvx-j9j6

VuXML ID

Description

28a37df6-ba1a-4eed-bb64-623fc8e8dfd0

py39-py -- Regular expression Denial of Service vulnerability

SCH227 reports:

The py library through 1.11.0 for Python allows remote attackers to conduct a ReDoS (Regular expression Denial of Service) attack via a Subversion repository with crafted info data, because the InfoSvnCommand argument is mishandled.

Discovery 2022-11-04
Entry 2023-04-09
py39-py

<= 1.11.0

CVE-2022-42969
https://osv.dev/vulnerability/PYSEC-2022-42969
https://osv.dev/vulnerability/GHSA-w596-4wvx-j9j6