Python 资源管理错误漏洞

目前厂商已发布升级补丁以修复漏洞，补丁获取链接：

https://bugs.python.org/issue41004

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/OXI72HIHMXCQFWTULUXDG7VDA2BCYL4Y/

来源:MISC

链接:https://github.com/python/cpython/pull/20956

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/VT4AF72TJ2XNIKCR4WEBR7URBJJ4YZRD/

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/NTBKKOLFFNHG6CM4ACDX4APHSD5ZX5N4/

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/LE4O3PNDNNOMSKHNUKZKD3NGHIFUFDPX/

来源:MISC

链接:https://www.oracle.com/security-alerts/cpujan2021.html

来源:GENTOO

链接:https://security.gentoo.org/glsa/202008-01

来源:MISC

链接:https://bugs.python.org/issue41004

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/X36Y523UAZY5QFXZAAORNFY63HLBWX7N/

来源:CONFIRM

链接:https://security.netapp.com/advisory/ntap-20200724-0004/

来源:UBUNTU

链接:https://usn.ubuntu.com/4428-1/

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/YILCHHTNLH4GG4GSQBX2MZRKZBXOLCKE/

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/CNHPQGSP2YM3JAUD2VAMPXTIUQTZ2M2U/

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/36XI3EEQNMHGOZEI63Y7UV6XZRELYEAU/

来源:SUSE

链接:http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00006.html

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/V3TALOUBYU2MQD4BPLRTDQUMBKGCAXUA/

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/V53P2YOLEQH4J7S5QHXMKMZYFTVVMTMO/

来源:MLIST

链接:https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html

来源:SUSE

链接:http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00032.html

来源:SUSE

链接:http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00003.html

来源:SUSE

链接:http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00041.html

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/CTUNTBJ3POHONQOTLEZC46POCIYYTAKZ/

来源:FEDORA

链接:https://lists.fedoraproject.org/archives/list/[email protected]/message/FCCZTAYZATTNSNEAXWA7U3HCO2OVQKT5/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.3614/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/160125/Red-Hat-Security-Advisory-2020-5149-01.html

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/160207/Red-Hat-Security-Advisory-2020-5118-01.html

来源:www.cybersecurity-help.cz

链接:https://www.cybersecurity-help.cz/vdb/SB2021052216

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/159655/Red-Hat-Security-Advisory-2020-4299-01.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.4179/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.2421/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.2465/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2021.1727

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2021.1207

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.2796/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/159811/Red-Hat-Security-Advisory-2020-4433-01.html

来源:vigilance.fr

链接:https://vigilance.fr/vulnerability/Python-denial-of-service-via-Lib-ipaddress-py-Hash-Collision-32588

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-watson-openscale-on-cloud-pak-for-data-is-impacted-by-cve-2020-14422/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/159997/Red-Hat-Security-Advisory-2020-5010-01.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.3591/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.4513/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2021.0234/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/158705/Gentoo-Linux-Security-Advisory-202008-01.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2021.0584

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.3212/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/158524/Ubuntu-Security-Notice-USN-4428-1.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.3870/

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-ibm-cloud-private-is-vulnerable-to-a-python-vulnerability-cve-2020-14422/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.3995/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.3887/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.4237/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2021.0864

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/159626/Red-Hat-Security-Advisory-2020-4285-01.html

来源:www.ibm.com

链接:https://www.ibm.com/blogs/psirt/security-bulletin-security-vulnerabilities-in-python3-affect-ibm-cloud-pak-for-multicloud-management-hybrid-grc/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.4100/

来源:www.ibm.com

链接:https://www.ibm.com/support/pages/node/6520474

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2021.0691

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.2511/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/162694/Red-Hat-Security-Advisory-2021-2021-01.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2021.0013/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2021.0099/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.2729/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/162142/Red-Hat-Security-Advisory-2021-1079-01.html

来源:nvd.nist.gov

链接:https://nvd.nist.gov/vuln/detail/CVE-2020-14422