CVE-2020-27619 Affecting python3.9 package, versions *
Snyk CVSS
Attack Complexity
Low
Confidentiality
High
Integrity
High
Availability
High
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-DEBIAN11-PYTHON39-1021152
- published 23 Oct 2020
- disclosed 22 Oct 2020
Introduced: 22 Oct 2020
CVE-2020-27619 Open this link in a new tabHow to fix?
There is no fixed version for Debian:11 python3.9.
NVD Description
Note: Versions mentioned in the description apply only to the upstream python3.9 package and not the python3.9 package as distributed by Debian:11.
See How to fix? for Debian:11 relevant fixed versions and status.
In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.