Lib/zipfile.py in Python through 3.7.2 allows remote attackers to cause a denial of service (resource consumption) via a ZIP bomb. CREATE(Triage):(User=admin) CVE-2019-9674 (https://nvd.nist.gov/vuln/detail/CVE-2019-9674)