/
PYSEC-2022-293.yaml
109 lines (109 loc) · 1.62 KB
/
PYSEC-2022-293.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
id: PYSEC-2022-293
details: Allocation of Resources Without Limits or Throttling in GitHub repository
ikus060/rdiffweb prior to 2.4.8.
affected:
- package:
name: rdiffweb
ecosystem: PyPI
purl: pkg:pypi/rdiffweb
ranges:
- type: GIT
repo: https://github.com/ikus060/rdiffweb
events:
- introduced: "0"
- fixed: 667657c6fe2b336c90be37f37fb92f65df4feee3
- type: ECOSYSTEM
events:
- introduced: "0"
- fixed: 2.4.8
versions:
- 0.10.0
- 0.10.2
- 0.10.3
- 0.10.4
- 0.10.5
- 0.10.6
- 0.10.7
- 0.10.8
- 0.10.9
- 0.9.2.dev1
- 0.9.3
- 0.9.4
- 0.9.5
- 1.0.0
- 1.0.0a1
- 1.0.0a2
- 1.0.0a3
- 1.0.0a4
- 1.0.1
- 1.0.2
- 1.0.3
- 1.1.0
- 1.2.0
- 1.2.1
- 1.2.2
- 1.3.0
- 1.3.1
- 1.3.1b1
- 1.3.1b2
- 1.3.2
- 1.4.0
- 1.4.0b1
- 1.4.0b2
- 1.4.0b3
- 1.4.0b4
- 1.4.0b5
- 1.4.1b1
- 1.4.1b2
- 1.4.1b3
- 1.5.0
- 1.5.1b1
- 1.5.1b2
- 1.6.0b1
- 2.0.1b2
- 2.0.1b3
- 2.0.2
- 2.0.3a1
- 2.0.3a2
- 2.0.3a3
- 2.0.3a4
- 2.0.3a5
- 2.0.3a6
- 2.0.3a7
- 2.1.0
- 2.2.0
- 2.2.0.dev1
- 2.2.0a1
- 2.2.0a2
- 2.2.0a3
- 2.2.0a4
- 2.2.0a5
- 2.2.0a6
- 2.2.1
- 2.3.0
- 2.3.1
- 2.3.2
- 2.3.3
- 2.3.4
- 2.3.5
- 2.3.6
- 2.3.7
- 2.3.8
- 2.3.9
- 2.4.0
- 2.4.1
- 2.4.2
- 2.4.3
- 2.4.4
- 2.4.5
- 2.4.6
- 2.4.7
references:
- type: WEB
url: https://huntr.dev/bounties/202dd03a-3d97-4c64-bc73-1a0f36614233
- type: FIX
url: https://github.com/ikus060/rdiffweb/commit/667657c6fe2b336c90be37f37fb92f65df4feee3
aliases:
- CVE-2022-3295
modified: "2022-09-28T18:56:44.570005Z"
published: "2022-09-26T13:15:00Z"