Lucene search
Veracode Vulnerability DatabaseVERACODE:32246HistorySep 26, 2021 - 11:39 a.m.
Denial Of Service (DoS)
2021-09-2611:39:17
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
24
0.016 Low
EPSS
Percentile
87.3%
python3.9 is vulnerable to denial of service. The vulnerability exists due to an improperly handled HTTP response in the HTTP client code of python which may allow a remote attacker, who controls the HTTP server, to make the client script enter an infinite loop, consuming CPU time.
References
bugs.python.org/issue44022
bugzilla.redhat.com/show_bug.cgi?id=1995162
github.com/python/cpython/pull/25916
github.com/python/cpython/pull/26503
python-security.readthedocs.io/vuln/urllib-100-continue-loop.html
security-tracker.debian.org/tracker/CVE-2021-3737
security.netapp.com/advisory/ntap-20220407-0009/
ubuntu.com/security/CVE-2021-3737
www.oracle.com/security-alerts/cpujul2022.html
Related
nvd
nvd
CVE-2021-3737
2022-03-04 19:15:08
osv
osv
CVE-2021-3737: urllib HTTP client possible infinite loop on a 100 Continue response
2022-03-04 00:00:00
BIT-python-2021-3737
2024-03-06 11:06:04
python3.8, python3.9 vulnerabilities
2021-12-17 15:10:44
ibm
ibm
Security Bulletin: A Python Issue Affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data
2023-01-12 21:59:00
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Python
2022-06-29 02:19:10
Security Bulletin: CVE-2021-44228 log4j affects MAS Monitor 8.4, 8.5 and 8.6
2022-03-28 17:15:21
ubuntucve
ubuntucve
CVE-2021-3737
2021-08-31 00:00:00
openvas
openvas
Python DoS Vulnerability (bpo-44022) - Linux
2022-03-08 00:00:00
Python DoS Vulnerability (bpo-44022) - Windows
2022-03-08 00:00:00
Ubuntu: Security Advisory (USN-5201-1)
2021-12-18 00:00:00
nessus
nessus
Python < 3.6.14 / 3.7.11 / 3.8.11 / 3.9.6 DoS
2021-12-20 00:00:00
Ubuntu 20.04 LTS : Python vulnerabilities (USN-5201-1)
2023-10-23 00:00:00
Ubuntu 18.04 LTS : Python vulnerabilities (USN-5199-1)
2021-12-18 00:00:00
debiancve
debiancve
CVE-2021-3737
2022-03-04 19:15:08
cvelist
cvelist
CVE-2021-3737
2022-03-04 00:00:00
cve
cve
CVE-2021-3737
2022-03-04 19:15:08
prion
prion
Design/Logic Flaw
2022-03-04 19:15:00
ubuntu
ubuntu
Python vulnerabilities
2021-12-17 00:00:00
Python vulnerabilities
2021-09-16 00:00:00
Python vulnerabilities
2021-12-17 00:00:00
hackerone
hackerone
Internet Bug Bounty: "urllib" will result to deny of service
2021-05-07 17:14:22
cloudlinux
cloudlinux
Fix of CVE: CVE-2021-3737
2022-03-22 14:15:13
redhatcve
redhatcve
CVE-2021-3737
2021-08-26 08:00:05
cbl_mariner
cbl_mariner
CVE-2021-3737 affecting package python3 3.7.10-7
2022-04-07 06:04:03
suse
suse
Security update for python (moderate)
2021-10-20 00:00:00
Security update for python (moderate)
2021-10-31 00:00:00
Security update for python39 (moderate)
2022-05-02 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: python2.7-2.7.18-15.fc35
2021-09-24 20:59:13
[SECURITY] Fedora 34 Update: mingw-python3-3.9.4-3.fc34
2021-09-30 01:15:07
[SECURITY] Fedora 33 Update: python2.7-2.7.18-15.fc33
2021-09-29 01:10:06
redhat
redhat
(RHSA-2022:1986) Moderate: python3 security update
2022-05-10 08:11:33
mageia
mageia
Updated python packages fix security vulnerability
2021-10-02 21:57:04
Updated python3 packages fix security vulnerability
2021-09-23 07:49:29
cloudfoundry
cloudfoundry
USN-5199-1: Python vulnerabilities | Cloud Foundry
2022-03-08 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-0461
2022-04-06 00:00:00
Critical Photon OS Security Update - PHSA-2022-0375
2022-03-26 00:00:00
Critical Photon OS Security Update - PHSA-2022-3.0-0375
2022-03-26 00:00:00
debian
debian
[SECURITY] [DLA 2808-1] python3.5 security update
2021-11-05 09:21:01
[SECURITY] [DLA 3477-1] python3.7 security update
2023-06-30 20:52:04
[SECURITY] [DLA 3432-1] python2.7 security update
2023-05-24 17:31:47
almalinux
almalinux
Moderate: python3 security update
2022-05-10 08:11:33
Moderate: python38:3.8 and python38-devel:3.8 security update
2022-05-10 06:23:23
Moderate: python27:2.7 security update
2022-05-10 08:02:50
oraclelinux
oraclelinux
python3 security update
2022-05-17 00:00:00
python38:3.8 and python38-devel:3.8 security update
2022-05-17 00:00:00
python27:2.7 security update
2022-05-17 00:00:00
rocky
rocky
python38:3.8 and python38-devel:3.8 security update
2022-05-10 06:23:23
python27:2.7 security update
2022-05-10 08:02:50
python39:3.9 and python39-devel:3.9 security update
2021-11-09 08:26:25
amazon
amazon
Medium: python
2022-05-31 23:50:00
Medium: python27
2022-05-31 23:47:00