15yearold

15-year-old Python flaw found in "over 350,000" projects

15-year-old Python flaw found in “over 350,000” projects

At least 350,000 open source projects are believed to be potentially vulnerable to exploitation via a Python module flaw that has remained unpatched for 15 years. On Tuesday, security firm Trellix said its threat researchers encountered a vulnerability in Python. tarfile module, which provides a way to read and write sets of compressed files called …

15-year-old Python flaw found in “over 350,000” projects Read More »

Unpatched 15-year old Python bug allows code execution in 350k projects

Unfixed 15-year-old Python bug allows code to run in 350,000 projects

A vulnerability in the Python programming language that was neglected for 15 years is now back in the spotlight as it likely affects over 350,000 open source repositories and can lead to code execution. Disclosed in 2007 and tagged CVE-2007-4559, the security issue never received a fix, with the only mitigation provided being a documentation …

Unfixed 15-year-old Python bug allows code to run in 350,000 projects Read More »