In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsUpgrade pyo3 to version 0.29.0 or higher.
pyo3 is a package that provides Rust bindings for Python. This includes running and interacting with Python code from a Rust binary, as well as writing native Python modules.
Affected versions of this package are vulnerable to Race Condition through the new_closure and new_closure_bound functions. An attacker can trigger data races or cause undefined behavior by invoking Python callables from multiple threads concurrently, as the closures lack the necessary thread-safety guarantees.