[New-bugs-announce] [issue44549] BZip 1.0.6 Critical Vulnerability
siddhartha shankar mahato
report at bugs.python.org
Fri Jul 2 06:46:07 EDT 2021
New submission from siddhartha shankar mahato <s.s.mahato at gmail.com>:
Python (3.9.5 and 3.9.6 are using Bzip2 1.0.6 which has a known critical vulnerability.
CVE-2019-12900 (BDSA-2019-1844)
9.8 Critical NVD CVE-2016-3189 (BDSA-2019-2036).
Please upgrade the same to a stable version.
----------
components: Windows
messages: 396853
nosy: paul.moore, s.s.mahato, steve.dower, tim.golden, zach.ware
priority: normal
severity: normal
status: open
title: BZip 1.0.6 Critical Vulnerability
type: crash
versions: Python 3.9
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue44549>
_______________________________________
More information about the New-bugs-announce
mailing list