CVE-2024-0450: Patch for CPython `zipfile` module fixing "quoted-overlap" zip-bombs vulnerability
A recent security issue has been discovered in the CPython zipfile module, affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.
CVE-2023-6597 - Exploiting Python’s `tempfile.TemporaryDirectory` Symlink Cleanup Flaw
A security issue affecting CPython’s popular tempfile.TemporaryDirectory class was discovered and logged as CVE-2023-6597. This vulnerability is present in Python versions 3.12.
CVE-2023-33595 - Heap Use-After-Free in CPython v3.12. alpha7's ascii_decode (Technical Breakdown, Exploit & Mitigation)
In June 2023, a critical vulnerability called CVE-2023-33595 was discovered in the widely-used Python programming language. This post unpacks the details of the bug, how
Episode
00:00:00
00:00:00