New submission from xcl-1 <1318683...@qq.com>:
Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow
the output length argument in some cases where the input length is close to the
maximum permissable length for an integer on the platform. In such cases the
xcl-1 <1318683...@qq.com> added the comment:
python 3.9.2 contains wininst-10.0-amd64.exe. wininst-10.0.exe.wininst-7.1.exe.
wininst-8.0.exe.wininst-9.0.exe.wininst-9.0-amd64.exe.wininst-14.0-amd64.exe
and wininst-14.0.exe associates CVE-2016-9843、CVE-2016-9841、CVE-2016-9840 and
CVE-201
New submission from xcl-1 <1318683...@qq.com>:
python 3.9.2 contains libcrypto-1_1.dll and libssl-1_1.dll associates
CVE-2021-23840\CVE-2021-3450\CVE-2021-3711\CVE-2021-3712\CVE-2021-23841\CVE-2021-3449
of openssl-1.1.1i
--
messages: 400800
nosy: xcl123
priority: normal
se
New submission from xcl-1 <1318683...@qq.com>:
python 3.9.2 contains wininst-10.0-amd64.exe. wininst-10.0.exe.wininst-7.1.exe.
wininst-8.0.exe.wininst-9.0.exe.wininst-9.0-amd64.exe.wininst-14.0-amd64.exe
and wininst-14.0.exe associates CVE-2016-9843、CVE-2016-9841、CVE-2016-9840 and
CV
New submission from xcl-1 <1318683...@qq.com>:
python 3.9.2 contains _bz2.pyd associates CVE-2019-12900 and CVE-2016-3189 of
bzip2-1.0.6
--
messages: 400802
nosy: xcl123
priority: normal
severity: normal
status: open
title: python 3.9.2 contains _bz2.pyd associates CVE-2019-129
New submission from xcl-1 <1318683...@qq.com>:
python 3.9.2 contains ensurepip and pip associates CVE-2021-3572 of pip-20.2.3
--
messages: 400803
nosy: xcl123
priority: normal
severity: normal
status: open
title: python 3.9.2 contains ensurepip and pip associates CVE-2021-3572 o
