Search for packages
| purl | pkg:deb/debian/python-ipaddress@1.0.17-1 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 3.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-q9te-pzu8-aaae
Aliases: CVE-2020-14422 |
Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface classes, which might allow a remote attacker to cause a denial of service if an application is affected by the performance of a dictionary containing IPv4Interface or IPv6Interface objects, and this attacker can cause many dictionary entries to be created. This is fixed in: v3.5.10, v3.5.10rc1; v3.6.12; v3.7.9; v3.8.4, v3.8.4rc1, v3.8.5, v3.8.6, v3.8.6rc1; v3.9.0, v3.9.0b4, v3.9.0b5, v3.9.0rc1, v3.9.0rc2. |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T14:55:43.094234+00:00 | Debian Oval Importer | Affected by | VCID-q9te-pzu8-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T08:13:12.197735+00:00 | Debian Oval Importer | Affected by | VCID-q9te-pzu8-aaae | None | 36.1.3 |
| 2025-06-08T07:49:12.133807+00:00 | Debian Oval Importer | Affected by | VCID-q9te-pzu8-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T01:54:30.290025+00:00 | Debian Oval Importer | Affected by | VCID-q9te-pzu8-aaae | None | 36.1.0 |
| 2025-04-08T06:21:39.311595+00:00 | Debian Oval Importer | Affected by | VCID-q9te-pzu8-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T00:26:08.773304+00:00 | Debian Oval Importer | Affected by | VCID-q9te-pzu8-aaae | None | 36.0.0 |