Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Memory race condition in ssl.SSLContext certificate store methods
Vulnerability Description
A defect was discovered in the Python “ssl” module where there is a memory race condition with the ssl.SSLContext methods “cert_store_stats()” and “get_ca_certs()”. The race condition can be triggered if the methods are called at the same time as certificates are loaded into the SSLContext, such as during the TLS handshake with a certificate directory configured. This issue is fixed in CPython 3.10.14, 3.11.9, 3.12.3, and 3.13.0a5.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
cpython 安全漏洞
Vulnerability Description
cpython是Python基金会的用C语言实现的Python解释器。 cpython存在安全漏洞,该漏洞源于cert_store_stats函数和get_ca_certs函数之间存在竞争条件。
CVSS Information
N/A
Vulnerability Type
N/A