{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-6232", "assignerOrgId": "28c92f92-d60d-412d-b760-e73465c3df22", "state": "PUBLISHED", "assignerShortName": "PSF", "dateReserved": "2024-06-20T21:01:55.524Z", "datePublished": "2024-09-03T12:29:00.102Z", "dateUpdated": "2024-09-07T02:44:49.241Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "CPython", "repo": "https://github.com/python/cpython", "vendor": "Python Software Foundation", "versions": [{"version": "0", "lessThan": "3.8.20", "status": "affected", "versionType": "python"}, {"version": "3.9.0", "lessThan": "3.9.20", "status": "affected", "versionType": "python"}, {"version": "3.10.0", "lessThan": "3.10.15", "status": "affected", "versionType": "python"}, {"version": "3.11.0", "lessThan": "3.11.10", "status": "affected", "versionType": "python"}, {"version": "3.12.0", "lessThan": "3.12.6", "status": "affected", "versionType": "python"}, {"version": "3.13.0a1", "lessThan": "3.13.0rc2", "status": "affected", "versionType": "python"}]}], "credits": [{"lang": "en", "type": "reporter", "value": "Elias Joakim Myllym\u00e4ki"}, {"lang": "en", "type": "coordinator", "value": "Seth Larson"}, {"lang": "en", "type": "remediation developer", "value": "Seth Larson"}, {"lang": "en", "type": "remediation reviewer", "value": "Gregory P. Smith"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<div>There is a MEDIUM severity vulnerability affecting CPython.<br></div><div><br></div><div>Regular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via specifically-crafted tar archives.&nbsp; </div>"}], "value": "There is a MEDIUM severity vulnerability affecting CPython.\n\n\n\n\n\nRegular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via specifically-crafted tar archives."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-1333", "description": "CWE-1333 Inefficient Regular Expression Complexity", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "28c92f92-d60d-412d-b760-e73465c3df22", "shortName": "PSF", "dateUpdated": "2024-09-07T02:44:49.241Z"}, "references": [{"tags": ["patch"], "url": "https://github.com/python/cpython/pull/121286"}, {"tags": ["issue-tracking"], "url": "https://github.com/python/cpython/issues/121285"}, {"tags": ["vendor-advisory"], "url": "https://mail.python.org/archives/list/security-announce@python.org/thread/JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY/"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/commit/4eaf4891c12589e3c7bdad5f5b076e4c8392dd06"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/commit/743acbe872485dc18df4d8ab2dc7895187f062c4"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/commit/d449caf8a179e3b954268b3a88eb9170be3c8fbf"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/commit/ed3a49ea734ada357ff4442996fd4ae71d253373"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/commit/7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/commit/b4225ca91547aa97ed3aca391614afbb255bc877"}], "source": {"discovery": "UNKNOWN"}, "title": "Regular-expression DoS when parsing TarFile headers", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-09-03T13:50:11.642458Z", "id": "CVE-2024-6232", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-03T13:50:23.624Z"}}, {"title": "CVE Program Container", "references": [{"url": "http://www.openwall.com/lists/oss-security/2024/09/03/5"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-09-03T20:02:40.422Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "http://www.openwall.com/lists/oss-security/2024/09/03/5"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-09-03T20:02:40.422Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-6232", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-03T13:50:11.642458Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-03T13:50:16.881Z"}}], "cna": {"title": "Regular-expression DoS when parsing TarFile headers", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "reporter", "value": "Elias Joakim Myllym\u00e4ki"}, {"lang": "en", "type": "coordinator", "value": "Seth Larson"}, {"lang": "en", "type": "remediation developer", "value": "Seth Larson"}, {"lang": "en", "type": "remediation reviewer", "value": "Gregory P. Smith"}], "affected": [{"repo": "https://github.com/python/cpython", "vendor": "Python Software Foundation", "product": "CPython", "versions": [{"status": "affected", "version": "0", "lessThan": "3.8.20", "versionType": "python"}, {"status": "affected", "version": "3.9.0", "lessThan": "3.9.20", "versionType": "python"}, {"status": "affected", "version": "3.10.0", "lessThan": "3.10.15", "versionType": "python"}, {"status": "affected", "version": "3.11.0", "lessThan": "3.11.10", "versionType": "python"}, {"status": "affected", "version": "3.12.0", "lessThan": "3.12.6", "versionType": "python"}, {"status": "affected", "version": "3.13.0a1", "lessThan": "3.13.0rc2", "versionType": "python"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://github.com/python/cpython/pull/121286", "tags": ["patch"]}, {"url": "https://github.com/python/cpython/issues/121285", "tags": ["issue-tracking"]}, {"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY/", "tags": ["vendor-advisory"]}, {"url": "https://github.com/python/cpython/commit/4eaf4891c12589e3c7bdad5f5b076e4c8392dd06", "tags": ["patch"]}, {"url": "https://github.com/python/cpython/commit/743acbe872485dc18df4d8ab2dc7895187f062c4", "tags": ["patch"]}, {"url": "https://github.com/python/cpython/commit/d449caf8a179e3b954268b3a88eb9170be3c8fbf", "tags": ["patch"]}, {"url": "https://github.com/python/cpython/commit/ed3a49ea734ada357ff4442996fd4ae71d253373", "tags": ["patch"]}, {"url": "https://github.com/python/cpython/commit/7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d", "tags": ["patch"]}, {"url": "https://github.com/python/cpython/commit/b4225ca91547aa97ed3aca391614afbb255bc877", "tags": ["patch"]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "There is a MEDIUM severity vulnerability affecting CPython.\n\n\n\n\n\nRegular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via specifically-crafted tar archives.", "supportingMedia": [{"type": "text/html", "value": "<div>There is a MEDIUM severity vulnerability affecting CPython.<br></div><div><br></div><div>Regular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via specifically-crafted tar archives.&nbsp; </div>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1333", "description": "CWE-1333 Inefficient Regular Expression Complexity"}]}], "providerMetadata": {"orgId": "28c92f92-d60d-412d-b760-e73465c3df22", "shortName": "PSF", "dateUpdated": "2024-09-07T02:44:49.241Z"}}}, "cveMetadata": {"cveId": "CVE-2024-6232", "state": "PUBLISHED", "dateUpdated": "2024-09-07T02:44:49.241Z", "dateReserved": "2024-06-20T21:01:55.524Z", "assignerOrgId": "28c92f92-d60d-412d-b760-e73465c3df22", "datePublished": "2024-09-03T12:29:00.102Z", "assignerShortName": "PSF"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", "matchCriteriaId": "5621585D-59F4-4B27-9980-E7602EA0B750", "versionEndIncluding": "3.12.5", "vulnerable": true}, {"criteria": "cpe:2.3:a:python:python:3.13.0:alpha0:*:*:*:*:*:*", "matchCriteriaId": "3BA51E41-D221-431F-870F-536AF2867B50", "vulnerable": true}, {"criteria": "cpe:2.3:a:python:python:3.13.0:alpha1:*:*:*:*:*:*", "matchCriteriaId": "978582FF-B8F3-479F-AE77-359E9AEE6F23", "vulnerable": true}, {"criteria": "cpe:2.3:a:python:python:3.13.0:alpha2:*:*:*:*:*:*", "matchCriteriaId": "84E3F62C-7218-4DC3-8473-8A576739643A", "vulnerable": true}, {"criteria": "cpe:2.3:a:python:python:3.13.0:alpha3:*:*:*:*:*:*", "matchCriteriaId": "1FD15706-B8BC-4801-9F93-06771F2E12C1", "vulnerable": true}, {"criteria": "cpe:2.3:a:python:python:3.13.0:alpha4:*:*:*:*:*:*", "matchCriteriaId": "0FDC359F-E8ED-4777-83FB-1EC63F095CBF", "vulnerable": true}, {"criteria": "cpe:2.3:a:python:python:3.13.0:alpha5:*:*:*:*:*:*", "matchCriteriaId": "6893BDDE-4D90-4592-8701-C6B3FFEB0CFE", "vulnerable": true}, {"criteria": "cpe:2.3:a:python:python:3.13.0:alpha6:*:*:*:*:*:*", "matchCriteriaId": "E316F712-F03A-4378-8192-D1640819698B", "vulnerable": true}, {"criteria": "cpe:2.3:a:python:python:3.13.0:beta1:*:*:*:*:*:*", "matchCriteriaId": "8566F034-27CB-422E-950B-DCAA926CF64F", "vulnerable": true}, {"criteria": "cpe:2.3:a:python:python:3.13.0:beta2:*:*:*:*:*:*", "matchCriteriaId": "EACCE6C3-7701-4966-9D88-E949C82FCA46", "vulnerable": true}, {"criteria": "cpe:2.3:a:python:python:3.13.0:beta3:*:*:*:*:*:*", "matchCriteriaId": "A4853BF2-9C27-465F-9840-5B37013C9F74", "vulnerable": true}, {"criteria": "cpe:2.3:a:python:python:3.13.0:beta4:*:*:*:*:*:*", "matchCriteriaId": "B266541A-E877-4CAD-A1EF-08A069441F36", "vulnerable": true}, {"criteria": "cpe:2.3:a:python:python:3.13.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "8384A34C-50CD-439C-A2BB-DEA6161342C1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "There is a MEDIUM severity vulnerability affecting CPython.\n\n\n\n\n\nRegular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via specifically-crafted tar archives."}, {"lang": "es", "value": "Existe una vulnerabilidad de gravedad MEDIA que afecta a CPython. Las expresiones regulares que permit\u00edan un retroceso excesivo durante el an\u00e1lisis del encabezado tarfile.TarFile son vulnerables a ReDoS a trav\u00e9s de archivos tar manipulados espec\u00edficamente."}], "id": "CVE-2024-6232", "lastModified": "2024-09-04T21:15:14.480", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-09-03T13:15:05.363", "references": [{"source": "cna@python.org", "tags": ["Patch"], "url": "https://github.com/python/cpython/commit/4eaf4891c12589e3c7bdad5f5b076e4c8392dd06"}, {"source": "cna@python.org", "tags": ["Patch"], "url": "https://github.com/python/cpython/commit/743acbe872485dc18df4d8ab2dc7895187f062c4"}, {"source": "cna@python.org", "url": "https://github.com/python/cpython/commit/7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d"}, {"source": "cna@python.org", "url": "https://github.com/python/cpython/commit/b4225ca91547aa97ed3aca391614afbb255bc877"}, {"source": "cna@python.org", "tags": ["Patch"], "url": "https://github.com/python/cpython/commit/d449caf8a179e3b954268b3a88eb9170be3c8fbf"}, {"source": "cna@python.org", "tags": ["Patch"], "url": "https://github.com/python/cpython/commit/ed3a49ea734ada357ff4442996fd4ae71d253373"}, {"source": "cna@python.org", "tags": ["Exploit", "Issue Tracking", "Patch"], "url": "https://github.com/python/cpython/issues/121285"}, {"source": "cna@python.org", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/python/cpython/pull/121286"}, {"source": "cna@python.org", "tags": ["Vendor Advisory"], "url": "https://mail.python.org/archives/list/security-announce@python.org/thread/JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY/"}], "sourceIdentifier": "cna@python.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-1333"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-1333"}], "source": "cna@python.org", "type": "Secondary"}]}

{"bugzilla": {"description": "python: cpython: tarfile: ReDos via excessive backtracking while parsing header values", "id": "2309426", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309426"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.5", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-1333", "details": ["There is a MEDIUM severity vulnerability affecting CPython.\nRegular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via specifically-crafted tar archives.", "A regular expression denial of service (ReDos) vulnerability was found in Python's tarfile module. Due to excessive backtracking while tarfile parses headers, an attacker may be able to trigger a denial of service via a specially crafted tar archive."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2024-6232", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "python", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "python", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Affected", "package_name": "python3", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Affected", "package_name": "python3", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Affected", "package_name": "python3.11", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Affected", "package_name": "python3.12", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "python36:3.6/python36", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "python39:3.9/python39", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "python3.11", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "python3.12", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "python3.9", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Affected", "package_name": "rhelai1/bootc-nvidia-rhel9", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}], "public_date": "2024-09-03T13:15:05Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-6232\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-6232\nhttps://github.com/python/cpython/issues/121285\nhttps://github.com/python/cpython/pull/121286\nhttps://mail.python.org/archives/list/security-announce@python.org/thread/JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY/"], "statement": "This vulnerability is classified as moderate severity rather than important because while it does allow for a denial of service (DoS) attack via excessive backtracking in the tarfile module, it does not enable remote code execution or compromise the integrity or confidentiality of data. Exploitation requires an attacker to provide a specially crafted tar archive and relies on the victim's system processing that file, which limits the attack vector.\nVersions of python36:3.6/python36 as shipped with Red Hat Enterprise Linux 8 are marked as 'Not affected' as they just provide \"symlinks\" to the main python3 component, which provides the actual interpreter of the Python programming language.", "threat_severity": "Moderate"}