Wind River Support Network

HomeDefectsLIN1021-4973
Acknowledged

LIN1021-4973 : Security Advisory - python-setuptools - CVE-2022-40897

Created: Dec 22, 2022    Updated: Dec 26, 2022
Found In Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

An issue discovered in Python Packaging Authority (PyPA) setuptools 65.3.0 and earlier allows remote attackers to cause a denial of service via crafted HTML package or custom PackageIndex page.

CREATE(Triage):(User=admin) CVE-2022-40897 (https://nvd.nist.gov/vuln/detail/CVE-2022-40897)
Live chat
Online