Security
Headlines
HeadlinesLatestCVEs

Headline

Ubuntu Security Notice USN-7101-1

Ubuntu Security Notice 7101-1 - It was discovered that Pydantic incorrectly handled certain regular expressions. A remote attacker could possibly use this issue to cause a denial of service via a crafted email string.

Packet Storm
#vulnerability#ubuntu#dos

==========================================================================

Ubuntu Security Notice USN-7101-1
November 12, 2024

pydantic vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 22.04 LTS
  • Ubuntu 20.04 LTS

Summary:

Pydantic could be made to crash if it received specially crafted
input.

Software Description:

  • pydantic: Data validation using Python type hints.

Details:

It was discovered that Pydantic incorrectly handled certain regular
expressions. A remote attacker could possibly use this issue to cause a
denial of service via a crafted email string.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS
python3-pydantic 1.8.2-1ubuntu0.1~esm1
Available with Ubuntu Pro

Ubuntu 20.04 LTS
python3-pydantic 1.2-1ubuntu0.1~esm3
Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-7101-1
https://ubuntu.com/security/notices/USN-7101-1
CVE-2024-3772

Related news

Red Hat Security Advisory 2024-3781-03

Red Hat Security Advisory 2024-3781-03 - An update is now available for Red Hat Ansible Automation Platform 2.4. Issues addressed include HTTP request smuggling, buffer overflow, code execution, cross site scripting, denial of service, memory exhaustion, null pointer, and password leak vulnerabilities.

Packet Storm: Latest News

Acronis Cyber Protect/Backup Remote Code Execution