Advisories ยป MGASA-2022-0167

Updated python-rencode packages fix security vulnerability

Publication date: 12 May 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2021-40839

Description

The rencode package through 1.0.6 for Python allows an infinite loop in
typecode decoding (such as via ;\x2f\x7f), enabling a remote attack that
consumes CPU and memory. (CVE-2021-40839)
                

References

SRPMS

8/core