Wind River Support Network

HomeDefectsLIN1022-2743
Fixed

LIN1022-2743 : Security Advisory - python-setuptools - CVE-2022-40897

Created: Dec 22, 2022    Updated: Feb 13, 2023
Resolved Date: Feb 13, 2023
Found In Version: 10.22.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Userspace

Description

An issue discovered in Python Packaging Authority (PyPA) setuptools 65.3.0 and earlier allows remote attackers to cause a denial of service via crafted HTML package or custom PackageIndex page.

CREATE(Triage):(User=admin) CVE-2022-40897 (https://nvd.nist.gov/vuln/detail/CVE-2022-40897)

CVEs


Live chat
Online