Lucene search
GoogleOSV:PYSEC-2021-427HistoryJun 21, 2021 - 8:15 p.m.
PYSEC-2021-427
2021-06-2120:15:00
Google
osv.dev
79
vulnerability
mpmath v1.0.0
regular expression denial of service
redos
mpmathify function
EPSS
0.014
Percentile
86.3%
A Regular Expression Denial of Service (ReDOS) vulnerability was discovered in Mpmath v1.0.0 when the mpmathify function is called.
References
github.com/advisories/GHSA-f865-m6cq-j9vx
github.com/fredrik-johansson/mpmath/commit/46d44c3c8f3244017fe1eb102d564eb4ab8ef750
github.com/npm/hosted-git-info/pull/76
github.com/yetingli/PoCs/blob/main/CVE-2021-29063/Mpmath.md
github.com/yetingli/SaveResults/blob/main/js/hosted-git-info.js
lists.fedoraproject.org/archives/list/[email protected]/message/3M5O55E7VUDMXCPQR6MQTOIFDKHP36AA/
lists.fedoraproject.org/archives/list/[email protected]/message/MS2U6GLXQSRZJE2HVUAUMVFR2DWQLCZG/
www.npmjs.com/package/hosted-git-info
Related
fedora
fedora
[SECURITY] Fedora 35 Update: python-mpmath-1.2.1-2.fc35
2021-10-29 23:15:16
[SECURITY] Fedora 34 Update: python-mpmath-1.2.1-2.fc34
2021-10-07 17:18:59
[SECURITY] Fedora 33 Update: python-mpmath-1.1.0-13.fc33
2021-10-07 17:08:16
osv
osv
ReDOS in Mpmath
2021-08-09 20:44:51
CVE-2021-29063
2021-06-21 20:15:09
github
github
ReDOS in Mpmath
2021-08-09 20:44:51
nvd
nvd
CVE-2021-29063
2021-06-21 20:15:09
ubuntucve
ubuntucve
CVE-2021-29063
2021-06-21 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0479)
2022-01-28 00:00:00
Fedora: Security Advisory for python-mpmath (FEDORA-2021-fc30c0de34)
2021-10-08 00:00:00
Fedora: Security Advisory for python-mpmath (FEDORA-2021-bc2153d8f0)
2021-10-30 00:00:00
cvelist
cvelist
CVE-2021-29063
2021-06-21 00:00:00
cve
cve
CVE-2021-29063
2021-06-21 20:15:09
debiancve
debiancve
CVE-2021-29063
2021-06-21 20:15:09
prion
prion
Denial of service
2021-06-21 20:15:00
mageia
mageia
Updated python-mpmath packages fix security vulnerability
2021-10-13 22:39:52
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2021-10-08 03:12:33