CVE-2024-6232

Regular-expression DoS when parsing TarFile headers

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

There is a MEDIUM severity vulnerability affecting CPython.

Regular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via specifically-crafted tar archives.

*Credits: Elias Joakim Myllymäki, Seth Larson, Seth Larson, Gregory P. Smith

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-06-20 CVE Reserved
2024-09-03 CVE Published
2024-09-05 EPSS Updated
2024-09-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-1333: Inefficient Regular Expression Complexity

CAPEC

References (9)

URL	Tag	Source
https://github.com/python/cpython/issues/121285	Issue Tracking

URL	Date	SRC

URL	Date	SRC
https://github.com/python/cpython/commit/4eaf4891c12589e3c7bdad5f5b076e4c8392dd06	2024-09-03
https://github.com/python/cpython/commit/743acbe872485dc18df4d8ab2dc7895187f062c4	2024-09-03
https://github.com/python/cpython/commit/d449caf8a179e3b954268b3a88eb9170be3c8fbf	2024-09-03
https://github.com/python/cpython/commit/ed3a49ea734ada357ff4442996fd4ae71d253373	2024-09-03
https://github.com/python/cpython/pull/121286	2024-09-03
https://github.com/python/cpython/commit/7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d	2024-09-07
https://github.com/python/cpython/commit/b4225ca91547aa97ed3aca391614afbb255bc877	2024-09-07

URL	Date	SRC
https://mail.python.org/archives/list/security-announce@python.org/thread/JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY	2024-09-03

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Python Software Foundation Search vendor "Python Software Foundation"		CPython Search vendor "Python Software Foundation" for product "CPython"				< 3.8.20 Search vendor "Python Software Foundation" for product "CPython" and version " < 3.8.20"		en		Affected
Python Software Foundation Search vendor "Python Software Foundation"		CPython Search vendor "Python Software Foundation" for product "CPython"				>= 3.9.0 < 3.9.20 Search vendor "Python Software Foundation" for product "CPython" and version " >= 3.9.0 < 3.9.20"		en		Affected
Python Software Foundation Search vendor "Python Software Foundation"		CPython Search vendor "Python Software Foundation" for product "CPython"				>= 3.10.0 < 3.10.15 Search vendor "Python Software Foundation" for product "CPython" and version " >= 3.10.0 < 3.10.15"		en		Affected
Python Software Foundation Search vendor "Python Software Foundation"		CPython Search vendor "Python Software Foundation" for product "CPython"				>= 3.11.0 < 3.11.10 Search vendor "Python Software Foundation" for product "CPython" and version " >= 3.11.0 < 3.11.10"		en		Affected
Python Software Foundation Search vendor "Python Software Foundation"		CPython Search vendor "Python Software Foundation" for product "CPython"				>= 3.12.0 < 3.12.6 Search vendor "Python Software Foundation" for product "CPython" and version " >= 3.12.0 < 3.12.6"		en		Affected