CVE-2022-48560 - Use-After-Free in Python's heapq.heappushpop (Through 3.9)
Python is one of the most popular programming languages in the world. It's celebrated for its simplicity and power, especially in handling data
CVE-2022-48564 - How a Bug in Python’s plistlib.py Let Malicious Plists Eat Your RAM and CPU
The last thing you want is for a simple configuration file to crash your app or kill your server. But that’s exactly what could
CVE-2023-36632 - Understanding the Controversy Around Python’s `email.utils.parseaddr` “RecursionError”
In June 2023, a security issue was filed under the label CVE-2023-36632 affecting Python’s email.utils.parseaddr function (up to version 3.11.4)
CVE-2023-33595 - Heap Use-After-Free in CPython v3.12. alpha7's ascii_decode (Technical Breakdown, Exploit & Mitigation)
In June 2023, a critical vulnerability called CVE-2023-33595 was discovered in the widely-used Python programming language. This post unpacks the details of the bug, how
CVE-2023-27043 - How Python Email Module Mishandles Special Characters, Enabling Email Spoofing
In early 2023, security researchers uncovered a subtle but critical vulnerability in Python’s standard email module. Officially tracked as CVE-2023-27043, this bug affects all
Episode
00:00:00
00:00:00