CVE-2022-42969

Withdrawn Advisory: ReDoS in py library when used with subversion

Description

The py library through 1.11.0 for Python allows remote attackers to conduct a ReDoS (Regular expression Denial of Service) attack via a Subversion repository with crafted info data, because the InfoSvnCommand argument is mishandled.

Patch Available

Fix available through Seal Security.  
No upgrade required, protect your application instantly.

Fix without upgrading

Score

Severity

Ecosystem

Python

Publish Date

November 4, 2022

Modified Date

November 7, 2023

Score Vector

Affected Versions