mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
87 lines
3.1 KiB
JSON
87 lines
3.1 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2023-41105",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "An issue was discovered in Python 3.11 through 3.11.4. If a path containing '\\0' bytes is passed to os.path.normpath(), the path will be truncated unexpectedly at the first '\\0' byte. There are plausible cases in which an application would have rejected a filename for security reasons in Python 3.10.x or earlier, but that filename is no longer rejected in Python 3.11.x."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://github.com/python/cpython/issues/106242",
|
|
"refsource": "MISC",
|
|
"name": "https://github.com/python/cpython/issues/106242"
|
|
},
|
|
{
|
|
"url": "https://github.com/python/cpython/pull/107983",
|
|
"refsource": "MISC",
|
|
"name": "https://github.com/python/cpython/pull/107983"
|
|
},
|
|
{
|
|
"url": "https://github.com/python/cpython/pull/107981",
|
|
"refsource": "MISC",
|
|
"name": "https://github.com/python/cpython/pull/107981"
|
|
},
|
|
{
|
|
"url": "https://github.com/python/cpython/pull/107982",
|
|
"refsource": "MISC",
|
|
"name": "https://github.com/python/cpython/pull/107982"
|
|
},
|
|
{
|
|
"refsource": "CONFIRM",
|
|
"name": "https://mail.python.org/archives/list/security-announce@python.org/thread/D6CDW3ZZC5D444YGL3VQUY6D4ECMCQLD/",
|
|
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/D6CDW3ZZC5D444YGL3VQUY6D4ECMCQLD/"
|
|
},
|
|
{
|
|
"refsource": "CONFIRM",
|
|
"name": "https://security.netapp.com/advisory/ntap-20231006-0015/",
|
|
"url": "https://security.netapp.com/advisory/ntap-20231006-0015/"
|
|
}
|
|
]
|
|
}
|
|
} |